KR100799773B1 - Method and system for processing financial transaction and program recording medium - Google Patents

Abstract

A system and a method of financial transaction, and a program recording medium for the same are provided to perform non-facing financial transaction without using a certificate or a security code by registering a password or security code. An OTP(One Time Password) for financial transaction is issued to a customer, and the OTP data, limited condition information about the financial transaction, and client certification information(140,145) are stored in a predetermined recording medium(125). A predetermined receiving unit(120) receives the password from a client terminal device, if the client is contacted to the internet banking. A predetermined verification unit confirms the limited condition information about the client certification information and the financial transaction. The financial transaction of the client is permitted without confirming a certificate of the client.

Description

Method and system for processing financial transaction and program recording medium therefor {Method and System for Processing Financial Transaction and Program Recording Medium}

1 is a diagram illustrating an information registration system for non-face-to-face financial transaction password (or code) registration according to an embodiment of the present invention.

FIG. 2 is a diagram illustrating a configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention. to be.

3 is a diagram illustrating a configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. Drawing.

4 is a diagram illustrating configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. One drawing.

5 is a diagram illustrating a process of registering a non-face-to-face financial transaction password (or code) and password (or code) using condition information according to an exemplary embodiment of the present invention.

6 is a diagram illustrating a non-face-to-face financial transaction system configuration for processing a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention.

7A, 7B, and 7C are diagrams illustrating a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to one embodiment of the present invention.

8 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to one embodiment of the present invention.

9 is a diagram illustrating a conventional non-face-to-face financial transaction method according to an embodiment of the present invention.

FIG. 10 is a diagram illustrating a non-face-to-face financial transaction system configuration processing a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

11A, 11B, and 11C are diagrams illustrating a non-face-to-face financial transaction process through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

12A and 12B illustrate a conventional non-face-to-face financial transaction method according to another exemplary embodiment of the present invention.

FIG. 13 is a diagram illustrating a non-face-to-face financial transaction system configuration processing a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

14A, 14B, and 14C are diagrams illustrating a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

15 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to another exemplary embodiment of the present invention.

16 is a diagram illustrating a conventional non-face-to-face financial transaction method according to another embodiment of the present invention.

17 is a diagram illustrating an information registration system for registering a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

18 is a diagram illustrating the configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention. to be.

19 illustrates a configuration of non-face-to-face financial transaction password (or code) and password (or code) usage condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. Drawing.

20 is a diagram illustrating configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. One drawing.

21 is a diagram illustrating a process of registering a non-face-to-face financial transaction password (or code) and password (or code) using condition information according to another exemplary embodiment of the present invention.

22 is a diagram illustrating a method for registering non-face-to-face financial transaction authentication information through an Internet banking-based financial transaction channel according to an embodiment of the present invention.

FIG. 23 is a diagram illustrating a non-face-to-face financial transaction system configuration processing a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention.

24A, 24B, and 24C illustrate a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to one embodiment of the present invention.

25 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to one embodiment of the present invention.

26 illustrates a conventional non-face to face financial transaction method according to an embodiment of the present invention.

FIG. 27 illustrates a block diagram of a non-face-to-face financial transaction system that processes a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

28A, 28B, and 28C are views illustrating a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

29A and 29B illustrate a conventional non-face-to-face financial transaction method according to another exemplary embodiment of the present invention.

30 is a block diagram of a non-face-to-face financial transaction system for processing a face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

31A, 31B, and 31C are diagrams illustrating a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

32 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to another exemplary embodiment of the present invention.

33 is a diagram illustrating a conventional non-face-to-face financial transaction method according to another embodiment of the present invention.

<Description of main parts of drawing>

105: information registration server 110: interface unit

115: interface providing unit 120: information receiving unit

125: information storage unit 130: information D / B

135: information registration terminal 140: wireless terminal

145: wired terminal

The present invention provides a one-time (or limited number) password (or code) for a financial transaction (account transfer, etc.) to a customer after authentication of a customer at a bank teller terminal, and the password (or code) information and the financial transaction ( Cooperatively processing the restriction condition information on the account transfer and the customer authentication information (and / or the customer account information) and storing them in a predetermined storage medium; Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Customer authentication information (and / or customer account information) corresponding to the received password (or code) and financial transaction (account transfer, etc.) in connection with the storage medium (or storage medium operating means) in a predetermined information checking means. Checking the constraint condition information for the; And providing the financial transaction (account transfer, etc.) processing of the customer based on the identified information in a predetermined financial transaction processing means, without a process of confirming the authentication certificate of the customer. To provide a method and system for processing financial transactions and a program recording medium therefor.

In a financial transaction method, when face-to-face financial transactions such as Internet banking and / or telebanking and / or wireless banking and / or TV banking and / or home banking, not face-to-face channels using financial institution counters, Security procedures using accredited certificates and / or security codes should be performed to ensure the same financial transaction validity.

However, the security procedure provided in the non-face-to-face channel as described above is not only complicated and difficult to use, but also has a terminal without an official certificate of the financial transaction customer (or shared by at least two customers). The non-face-to-face financial transaction is not performed when the non-face-to-face financial transaction is performed through a device, and / or the non-face-to-face financial transaction is performed without the customer holding the security card. Doing.

An object of the present invention for solving the above problems, after the customer authentication at the bank teller terminal to give the customer a one-time (or limited number) password (or code) for financial transactions (account transfer, etc.), Associating the password (or code) information with the restriction condition information for the financial transaction (account transfer, etc.) and the customer authentication information (and / or customer account information) to a predetermined storage medium; Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Customer authentication information (and / or customer account information) corresponding to the received password (or code) and financial transaction (account transfer, etc.) in connection with the storage medium (or storage medium operating means) in a predetermined information checking means. Checking the constraint condition information for the; And providing the financial transaction (account transfer, etc.) processing of the customer based on the identified information in a predetermined financial transaction processing means, without a process of confirming the authentication certificate of the customer. Financial transaction processing method and system and program recording medium therefor.

In the present invention, the method for processing a financial transaction grants a customer a one-time (or limited number) password (or code) for a financial transaction (account transfer, etc.) after authenticating a customer at a bank teller terminal, and provides the password (or code) information. And cooperatively processing the restriction condition information on the financial transaction (account transfer, etc.) and the customer authentication information (and / or customer account information) on a predetermined storage medium; Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Customer authentication information (and / or customer account information) corresponding to the received password (or code) and financial transaction (account transfer, etc.) in connection with the storage medium (or storage medium operating means) in a predetermined information checking means. Checking the constraint condition information for the; And providing the financial transaction (account transfer, etc.) processing of the customer based on the identified information in a predetermined financial transaction processing means, without a process of confirming the customer's authorized certificate. .

In the present invention, after the customer authentication at the bank teller terminal, the customer is given a one-time (or limited number) password (or code) for a financial transaction (account transfer, etc.), and the provided password (or code) information and the customer authentication information. Interworking (and / or customer account information) and storing the data in a predetermined storage medium; Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Confirming customer authentication information (and / or customer account information) corresponding to the received password (or code) in association with the storage medium (or storage medium operating means) in a predetermined information checking means; And providing the financial transaction (account transfer, etc.) processing of the customer on the basis of the confirmed information in a predetermined financial transaction processing means, without the process of confirming the authentication certificate of the customer. .

According to the implementation method of the present invention, the financial transaction processing method is based on the information confirmed in the predetermined financial transaction processing means, the financial transaction (account transfer, etc.) processing of the customer without the process of confirming the authentication certificate of the customer When providing, preferably comprising the step of checking the validity of the account password and / or security card password provided from the customer terminal.

According to an embodiment of the present invention, the restriction condition information for the financial transaction (account transfer, etc.) may include at least one of financial transaction type restriction condition information, transfer limit setting condition information, and financial transaction possible period / time setting condition information. It is preferable to comprise as mentioned above.

According to the present invention, the recording medium provided on the system in which the financial transaction processing method is realized is characterized by recording a program for executing the financial transaction processing method.

In the present invention, the financial transaction processing system is a one-time (or limited number of times) password (or code) information for a financial transaction (account transfer, etc.) provided to an authenticated customer by a bank teller terminal and the customer authentication information (and / or customer account). Information storage means for cooperatively processing information) and storing the information in a predetermined storage medium; Information receiving means for receiving the password (or code) from the customer terminal; Information checking means for confirming customer authentication information (and / or customer account information) corresponding to the received password (or code) in association with the storage medium (or storage medium operating means); And financial transaction processing means for providing the financial transaction (account transfer, etc.) processing of the customer without the process of confirming the authentication certificate of the customer based on the confirmed information.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify the terms so that those skilled in the art to clearly understand the technical features of the present invention to effectively understand, but the present invention It is by no means limited.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating an information registration system for registering a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention.

In more detail, Figure 1 illustrates a non-face-to-face financial transaction password (or code) for a non-face-to-face financial transaction password (or code) registration according to the present invention to a non-face-to-face financial transaction system through a predetermined information registration interface. If the password (or code) using condition information is provided, the non-face-to-face financial transaction system stores the non-face-to-face financial transaction password (or code) and the password (or code) using condition information in association with a predetermined storage medium. As a system configuration, a person having ordinary knowledge in the technical field to which the present invention pertains can refer to and / or modify this drawing 1 to various information registration system configurations for non-face-to-face financial transaction password (or code) registration. Although it will be possible to infer an implementation method, the present invention includes all implementation methods inferred from the above, FIG. It shall not be limited to how the illustrated embodiment.

For example, when the non-face-to-face financial transaction password (or code) terms of use are fixed and / or adjusted by the non-face-to-face financial transaction system, the password (or code) terms of use information may be omitted. The present invention is not limited by this.

Hereinafter, a non-face-to-face financial transaction password (or code) and password (or code) using condition information provided from the customer through a predetermined information registration interface on the information registration system shown in FIG. 1 for storing the storage medium. Components corresponding to at least one or more means and / or functional configurations are referred to as " information registration server 105 " for convenience.

Referring to FIG. 1 according to an embodiment of the present invention, an information registration system for registering a non-face-to-face financial transaction password (or code) according to the present invention includes information including a counter terminal provided at at least one financial institution branch. Characterized in that it comprises a registration terminal 135, the information registration terminal 135 is connected to the communication channel and the information registration server 105 provided on the non-face-to-face financial transaction system through a predetermined network means .

According to an embodiment of the present invention, the customer visits the financial institution branch to register a non-face-to-face financial transaction password (or code) according to the present invention, and through a window (or counter employee) provided at the financial institution branch. Complete a prescribed application for registration of a non-face-to-face financial transaction password (or code) (e.g., a document with a form for filling in at least one information item for registration of the non-face-to-face financial transaction password (or code)) When the completed application is submitted to the counter clerk, the counter clerk inputs (or selects) the information written in the application through a predetermined counter terminal, and the counter terminal displays the input (or selected) information. It is preferable to transmit to the information registration server 105 provided on the non-face-to-face financial transaction system through a network means.

Here, the teller terminal preferably comprises a manager terminal used by the teller staff provided in the financial institution branch, the information registration server 105 connected to the teller terminal is a ledger provided on the predetermined financial system It is preferable to include a server, wherein the network means for connecting the teller terminal and the information registration server 105 is a financial network (for example, the network) connecting the communication channel between the teller terminal and the information registration server 105 It is preferable to comprise a.

In the above information registration system, the application prepared by the customer, the teller terminal used by the teller, and the financial network connecting the teller terminal and the information registration server 105 are non-customer according to the present invention. In order to register a face-to-face financial transaction password (or code), it performs a function of an information registration interface for registering non-face-to-face financial transaction password (or code) and password (or code) usage condition information.

The storage medium provided on the non-face-to-face financial transaction system according to the present invention associates the non-face-to-face financial transaction password (or code) and password (or code) using condition information provided from the information registration terminal 135 The non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in the storage medium may be stored in a predetermined internet banking system, and / or a telebanking system, and / or wireless banking. It is used to authenticate non-face-to-face financial transactions through a face-to-face financial transaction system that includes at least one of a system, and / or a TV banking system, and / or a home banking system.

Here, the non-face-to-face financial transaction password (or code) is at least one or more of a predetermined Internet banking system, and / or a tele banking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. In the non-face-to-face financial transaction system including a non-face-to-face financial transaction validity authentication through a conventional accredited certificate, and / or skip the non-face-to-face financial transaction validity verification process through at least one security code provided in the security card, the non-face-to-face And a password (or code) for authenticating at least one non-face-to-face financial transaction through the financial transaction system.

According to an embodiment of the present invention, the non-face-to-face financial transaction password (or code) registration process is performed through face-to-face transactions through the window terminal, and then the non-face-to-face financial transaction password (or code) It is desirable to authenticate the validity of the.

In addition, the password (or code) using condition information is at least one or more of a predetermined Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. It characterized in that the non-face-to-face financial transactions through the non-face-to-face financial transaction system including the non-face-to-face financial transaction conditions available through the password (or code).

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system including at least one of the systems, it is preferable to limit the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one time.

Alternatively, the password (or code) usage condition information may include at least one or more of a predetermined Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. In the non-face-to-face financial transaction system including, it is preferable to limit the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to N (N> 1) times.

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system including at least one or more of the system, it is preferable to include limit amount information on the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code).

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system that includes at least one of the systems, the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) may be used to transfer a specific financial transaction (eg, transfer to a designated financial account, or pay a utility bill, or CMS). (Cash Management Service) It is preferable to limit to a deposit or a small account transfer.

According to one embodiment of the invention, the storage medium is preferably provided in a DBMS on a financial system provided on the non-face-to-face financial transaction system (or associated with the non-face-to-face financial transaction system), wherein the storage The medium may be a ledger D / B provided in the DBMS on the financial system, and / or a predetermined database associated with the ledger D / B, and the present invention is not limited thereto.

According to another embodiment of the present invention, the storage medium is an Internet banking system, and / or a telebanking system, and / or a wireless banking system provided on (or associated with) the non-face-to-face financial transaction system, and / or It is possible to be provided in a DBMS on at least one banking system of a TV banking system and / or a home banking system, whereby the present invention is not limited.

The information registration server 105 provided on the non-face-to-face financial transaction system according to the present invention is a generic term for the non-face-to-face financial transaction system side components connected to the information registration terminal 135 through a predetermined network means. It may be implemented by including at least one server (or device), and / or implemented by at least one or more programs recorded on a recording medium provided in a predetermined server (or device), by which the present invention is not limited. .

According to an embodiment of the present invention, when the information registration terminal 135 is a teller terminal connected to a predetermined financial network, the information registration server 105 is connected to the teller terminal through a predetermined financial network. And / or a server (or device) provided in an external system on the financial system, and / or a program provided in the external system on the financial system, whereby the present invention is not limited thereto. No.

According to the method of the present invention, the information registration server 105 is characterized in that it comprises an interface unit 110 for connecting and managing a predetermined communication channel with the information registration terminal 135 through the network means. do.

According to an embodiment of the present invention, when the information registration terminal 135 is a window terminal connected to a predetermined financial network, the interface unit 110 may be connected to the window terminal based on a protocol stack defined in the financial network. It is desirable to provide a communication interface for connecting at least one communication channel and transmitting and receiving at least one information (or data) using a communication protocol defined in a financial transaction related program provided in the window terminal.

Referring to FIG. 4, the information registration server 105 interworks with the interface unit 110 when a predetermined information registration terminal 135 accesses the information registration server 105 through the interface unit 110. Generate (or extract) a predetermined user interface for inputting (or selecting) predetermined non-face-to-face financial transaction password (or code) and password (or code) using condition information from the information registration terminal 135 An interface providing unit 115 provided to the information registration terminal 135 and a predetermined input (or selection) transmitted from the information registration terminal 135 through the user interface in cooperation with the interface unit 110. An information receiver 120 for receiving non-face-to-face financial transaction password (or code) and password (or code) terms and conditions information, and the received non-face-to-face financial transaction password (or code) and password (or Code), and the use condition information characterized by comprising an information storage unit 125 which stores in association processing in the storage medium.

The interface providing unit 115 corresponds to a functional configuration provided in the information registration terminal 135 when a predetermined information registration terminal 135 is connected to the information registration server 105 through the interface unit 110. A predetermined user interface capable of inputting (or selecting) the non-face-to-face financial transaction password (or code) and password (or code) usage condition information and transmitting the information to the information registration server 105 through the network means. Generate and / or extract from a predetermined database (not shown), and provide the generated (or extracted) user interface to the information registration terminal 135 through the network means in association with the interface unit 110. Characterized in that.

Subsequently, the information registration terminal 135 inputs (or selects) the non-face-to-face financial transaction password (or code) and password (or code) using condition information based on the user interface. The non-face-to-face financial transaction password (or code) and password (or code) use condition information are transmitted to the information registration server 105 via the network means.

According to an embodiment of the present invention, when the information registration terminal 135 is a window terminal connected to a predetermined financial network, the interface providing unit 115 may provide a financial transaction related program provided in the window terminal. It is preferable to generate (or extract) a user interface of the and provide the generated (or extracted) user interface to the window terminal through the interface unit 110.

The information receiving unit 120 inputs (or selects) predetermined non-face-to-face financial transaction password (or code) and password (or code) using condition information from the information registration terminal 135 through the user interface. When transmitting through, the non-face-to-face financial transaction password (or code) and the password (or code) using condition information in connection with the interface unit 110, characterized in that the received non-face-to-face financial transaction password ( Or code) and password (or code) use condition information are provided to the information storage unit 125.

The information storage unit 125 stores and stores the non-face-to-face financial transaction password (or code) and password (or code) usage condition information received through the information receiver 120 in the storage medium. When the storage medium is provided in the information registration server 105 or on the network associated with the information registration server 105, the information storage unit 125 receives the received non-face-to-face financial transaction password. (Or code) and password (or code) using condition information is preferably stored in a linked process to the storage medium, if the storage medium is provided in the DBMS provided on the financial system, the information storage unit 125 The non-face-to-face financial transaction password (or code) and the password (or code) using condition information to provide to the information system through the external system on the financial system to store It is preferable.

According to an exemplary embodiment of the present invention, the information storage unit 125 preferably stores the non-face-to-face financial transaction password (or code) and password (or code) in association with the customer account information.

For example, when the storage medium is provided in the ledger D / B on the financial system, the non-face-to-face financial transaction password (or code) and password (or code) using condition information is preferably processed in association with a predetermined account ledger.

2 is a diagram illustrating the configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention. to be.

In more detail, FIG. 2 illustrates a non-face-to-face financial transaction password (or code) in the ledger information provided in the ledger D / B when the storage medium shown in FIG. 1 is the ledger D / B provided in the DBMS on the financial system. ) And an information structure for an exemplary method of storing password (or code) using condition information, and a person of ordinary skill in the art to which the present invention pertains may refer to and / or modify the present invention. Various information construction methods for storing the non-face-to-face financial transaction password (or code) and password (or code) usage condition information in the ledger D / B may be inferred, but the present invention includes all the inferred implementation methods. The present invention is not limited to the implementation method shown in FIG. 2 only.

Referring to FIG. 2 according to an embodiment of the present invention, the ledger information included in the ledger D / B provided in the DBMS on the financial system includes a predetermined ledger and an account ledger associated with the ledger (eg, a ledger ledger). , Loan ledger, etc.) and at least one information associated with the account ledger, if the person having ordinary knowledge in the technical field to which the present invention belongs, ledger provided in the DBMS on the financial system D / B further includes at least one ledger (eg, a loan ledger, a mortgage ledger, ..., etc.) and / or at least one additional information for maintaining and managing the ledgers in addition to the customer ledger and account ledger shown in FIG. It will be clearly understood that it is included, and will also be familiar with the specific technical matters, so a detailed description thereof is omitted for convenience. .

The customer ledger is CIF (Customer Information File) number, country code, contact person ID, sales office number, customer classification, customer name, customer address, regional classification code, telephone number, business number, business name, classification code, expiration date, status head office Information, Settlement Date, Cash Date, Last Name, Person, Social Security Number, Company Address, Company Phone Number, Mailing Address, Account Number, President, Business Type, Legal Representative, Initial Transaction Date, TRW, DB, Usage, Parent Company Number. Country name, transmission, sex resident, occupation, mailing address, company name, guardian name, guardian telephone number, legal representative business number, construction process classification, tax classification, area code, group code and postal code, etc. The customer ledger includes ledger information for a customer including at least one of an individual customer, a corporate customer, a minor, and the like.

Those skilled in the art to which the present invention pertains will clearly understand the contents and features of the information contained in the customer ledger, and thus the detailed description thereof will be omitted for convenience.

In addition, the account ledger is linked to the customer ledger relationally, account number, CIF number, point number, currency, opening date, status, product type, interest rate, password, balance, RBI balance 1, RBI balance 2, bank balance , Bank account number, interest interest, time extension, time extension amount, ARS setting, last deposit date, last withdrawal date, final deposit amount, final withdrawal amount, unpaid account transactions, interest rate account, flat currency connection, final payment interest, final payment transaction It includes at least one of a number, an individual interest rate reference, and a final interest calculation date, and includes at least one account number, abstention (month), period (days), period extension, maturity date, and target amount corresponding to the account ledger. Periodic reception information, and / or trust reception information including at least one or more of an account number, a deposit amount, a par value, a pension date, and the number of shares corresponding to the account ledger, and / or the account ledger. Transactions that include at least one account number, transaction number, date, point number, product type, transaction type, cash amount, RBI, batch number, batch transaction, date of payment, bank account line, summary, CIF, etc. It includes the history information.

Those skilled in the art to which the present invention pertains will clearly understand the contents and features of the information contained in the account ledger and the additional information configuration, and thus the detailed description thereof will be omitted for convenience.

Referring to Figure 2, the non-face-to-face financial transaction password (or code) and password (or code) using condition information provided through the information registration system shown in Figure 1 is stored in the form of additional information added to the account ledger, Thereby, in a window-based financial transaction based on the financial system, and / or an internet banking-based financial transaction, and / or a wireless banking-based financial transaction, and / or a telebanking-based financial transaction and / or a TV banking-based financial transaction, The non-face-to-face financial transaction password (or code) and non-face-to-face financial transaction using the password (or code) using condition information is provided.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) use condition information are stored in the form of information included in the account ledger (not shown), and / or the It can both be stored in the form of additional information added to the ledger other than the account ledger (eg, the customer ledger), and / or in the form of information contained in the ledger other than the account ledger (eg, the customer ledger). The present invention is not limited.

Figure 3 illustrates the configuration of the non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in the storage medium for registration of the non-face-to-face financial transaction password (or code) according to another embodiment of the present invention Drawing.

In more detail, FIG. 3 illustrates an information structure of an exemplary embodiment in which the storage medium shown in FIG. 1 is stored in a predetermined database 310 linked to a ledger D / B provided in a DBMS on a financial system. As those skilled in the art to which the present invention pertains, the non-face-to-face financial transaction password (or code) and password (or code) may be referred to the predetermined database 310 by referring to and / or modifying the drawing 3. Various information configuration methods for storing the use condition information in association with the ledger D / B may be inferred, but the present invention includes all the implementation methods inferred and is not limited to the implementation method shown in FIG. No.

In particular, FIG. 3 is a case where it is not easy to store the non-face-to-face financial transaction password (or code) and password (or code) use condition information in the ledger information of the ledger D / B on the DBMS provided on the financial system. (E.g., when it is not easy to change the ledger D / B 305 of the DBMS due to the policy of the financial institution, or the system expansion is not easy due to the characteristics of the financial system), a predetermined database instead of the ledger D / B The non-face-to-face financial transaction password (or code) and password (or code) usage condition information are stored in 310, and the database 310 and the ledger D / B are linked to each other.

In addition, the database 310 shown in FIG. 3 does not need to be provided on a DBMS provided on a financial system as in the embodiment shown in FIG. 3, and the database on the Internet banking system may be 310, and / or a database 310 on a telebanking system, and / or a database 310 on a wireless banking system, and / or a database 310 on a TV banking system. It is not limited.

Referring to FIG. 3, the database 310 stores and stores the non-face-to-face financial transaction password (or code) and password (or code) using condition information in association. CIF number corresponding to the ledger information in the non-face-to-face financial transaction password (or code) and password (or code) use condition information so that the code) and password (or code) use condition information are processed in association with the ledger D / B. It is preferred to further comprise a.

Figure 4 shows the configuration of the non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in the storage medium for registration of the non-face-to-face financial transaction password (or code) according to another embodiment of the present invention One drawing.

In more detail, FIG. 4 shows an embodiment in which the storage medium shown in FIG. 1 is provided in a DBMS provided on an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system. As a method, one of ordinary skill in the art to which the present invention pertains refers to a non-face-to-face financial transaction password stored in a storage medium provided in a DBMS on at least one or more banking systems by referring to and / or modifying the present invention. (Or code) and password (or code) can be inferred the information configuration method for the use condition information, but the present invention includes all the inferred implementation method, and is not limited to the implementation method shown in FIG. .

Referring to FIG. 4, the database 310 stores and stores the non-face-to-face financial transaction password (or code) and password (or code) using condition information in association with the non-face-to-face financial transaction password (or Code) and password (or code) terms of use are stored in at least one of an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. It may comprise one or more banking systems.

For example, when the storage medium is provided in a DBMS on an internet banking system, the non-face-to-face financial transaction password (or code) and password (or code) use condition information are included in banking element information stored in a DBMS on the internet banking system. Preferably stored.

5 is a diagram illustrating a process of registering a non-face-to-face financial transaction password (or code) and password (or code) using condition information according to an exemplary embodiment of the present invention.

In more detail, FIG. 5 shows a window terminal on the information registration system shown in FIG. 1 connected to the information registration server 105 to connect a communication channel for information registration according to the present invention, and then through the communication channel. When the non-face-to-face financial transaction password (or code) and password (or code) using condition information is transmitted to the information registration server 105, the non-face-to-face financial transaction password (or code) received from the information registration server 105 ) And a password (or code) using condition information is stored in a predetermined storage medium by the process of linking, if the person of ordinary skill in the art to which the present invention belongs, reference and / or this figure 5 Modifying and registering the non-face-to-face financial transaction password (or code) and password (or code) using condition information from the window terminal to the information registration server 105. Would be able to infer the various method embodiments, the present invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 5.

Hereinafter, in FIG. 5, the window terminal shown in FIG. 1 will be referred to as "terminal" for convenience, and the information registration server 105 shown in FIG. 1 will be called "server" for convenience, and the information registration in the window terminal will be described. The non-face-to-face financial transaction password (or code) and password (or code) usage condition information transmitted to the server 105 is referred to as "non-face-to-face financial transaction authentication information" for convenience.

Referring to FIG. 5, a window terminal shown in FIG. 1 connects to a server through a predetermined financial network to connect a predetermined communication channel for registering the non-face-to-face financial transaction authentication information, and the non-face-to-face financial transaction. When requesting registration of the non-face-to-face financial transaction authentication information for password (or code) registration (500), the server generates a web page corresponding to a predetermined information input interface for registration of the non-face-to-face financial transaction authentication information (or Extraction) (505), and transmits and outputs the generated (or extracted) web page to the terminal through the communication channel (510).

According to an embodiment of the present invention, the information input interface may input non-face-to-face financial transaction authentication information including at least one of the non-face-to-face financial transaction password (or code) and password (or code) using condition information in the terminal ( Or selection).

In addition, the web page transmission and / or output process is preferably performed at least one or more times according to the non-face-to-face financial transaction authentication information registration procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) at least one non-face-to-face financial transaction password (or code) and password (or code) using condition information through the information input interface based on an application prepared by a predetermined customer (515). .

If the terminal enters (or selects) non-face-to-face financial transaction authentication information including the non-face-to-face financial transaction password (or code) and password (or code) usage condition information through the information input interface (520), the The terminal transmits the input (or selected) non-face-to-face financial transaction password (or code) and password (or code) usage condition information to the server through the financial transaction channel (525).

According to an embodiment of the present invention, transmitting the input (or selected) non-face-to-face financial transaction password (or code) and password (or code) usage condition information through the financial transaction channel to the server may include the information input. The electronic signature and / or encryption of the non-face-to-face financial transaction password (or code) and the password (or code) using condition information input (or selected) through the interface are transmitted to the server through the security module provided in the terminal. It can be made to include more.

Thereafter, the server confirms the validity of the non-face-to-face financial transaction authentication information by receiving and reading the non-face-to-face financial transaction password (or code) and password (or code) using condition information through the financial transaction channel ( 530).

According to an embodiment of the present invention, receiving and reading the non-face-to-face financial transaction authentication information through the financial transaction channel to confirm validity, the non-face-to-face financial transaction password (or code) and password (or code) usage conditions It is preferable to include checking whether the terminal which transmitted the information is a valid window terminal provided at the window of the said financial institution.

If the validity of the non-face-to-face financial transaction authentication information is not authenticated (535), the server generates a web page including predetermined information registration error information and transmits it to the terminal (540), and the non-face-to-face financial transaction Do not perform the information registration procedure corresponding to the authentication information.

On the other hand, if the validity of the non-face-to-face financial transaction authentication information is authenticated (535), the server performs an information registration procedure corresponding to the non-face-to-face financial transaction authentication information, the non-face-to-face financial transaction password (or code) and password (Or code) by using the linkage processing condition information stored in a predetermined storage medium (545), by generating a web page containing a predetermined information registration history information transmitted to the terminal (550), requested by the terminal Complete the process of registering non-face-to-face financial transaction authentication information.

According to an embodiment of the present invention, the storage medium may be located in a DBMS provided on the non-face-to-face financial transaction system, and / or in a DBMS provided on a financial system linked to the Internet banking system. The present invention is not limited thereto.

6 is a diagram illustrating a non-face-to-face financial transaction system configuration for processing a non-face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention.

More specifically, FIG. 6 illustrates at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In an Internet banking system operated based on a Transmission Control Protocol / Internet Protocol (TCP / IP) based network (for example, the Internet, etc.), a predetermined non-face-to-face finance registered through the information registration system shown in FIG. A method for implementing a non-face-to-face financial transaction system for processing non-face-to-face financial transactions without at least one or more authorized certificates and / or security codes in the Internet banking system based on a transaction password (or code), the present invention Those of ordinary skill in the art may refer to and / or modify this drawing to add to the Internet banking system. Any other non-face-to-face financial transaction system (e.g., a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system) may be registered through the information registration system shown in FIG. Various implementation methods may be inferred for processing non-face-to-face financial transactions without at least one or more accredited certificates and / or security codes based on non-face-to-face financial transaction passwords (or codes). All are included, and not limited to the embodiment shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). Internet banking system operating based on a TCP / IP-based network (for example, the Internet, etc.), to provide an Internet banking service to at least one client terminal having a predetermined web browser, and at least one client terminal Internet banking server 600, the Internet banking server 600 is associated with a financial system 660 that processes the financial business required to provide the Internet banking service through a predetermined interface means 655. .

Those skilled in the art to which the present invention pertains can easily guess the omitted components for convenience because they do not include the core technical matters of the present invention in the Internet banking system shown in FIG. The present invention is not limited to the omitted elements.

That is, FIG. 6 illustrates a non-face-to-face financial transaction between the client terminal and the Internet banking server based on a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. Although an implementation method of the Internet banking system for processing the present invention is illustrated, those of ordinary skill in the art may refer to the Internet banking-based financial transaction channel connection method using the browser program shown in FIG. And / or modify the Internet banking system configuration for processing non-face-to-face financial transactions between the client terminal and the internet banking server based on a predetermined internet banking program mounted on the client terminal. The above internet banking program It includes an Internet banking system provided on the basis of the RAM, by which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the Internet banking system by referring to and / or modifying the configuration of the Internet banking system shown in Figure 6, non-face-to-channel based financial transactions according to the present invention Other banking systems, such as a telebanking system and / or a wireless banking system and / or a TV banking system and / or a home banking system, may be inferred, but the present invention is directed to the telebanking system and / or wireless banking system and / or Or any type of non-face-to-face banking system including a TV banking system and / or a home banking system and / or a non-face-to-face channel banking system proposed in the future, wherein the technical configuration of the present invention is shown in FIG. It is by no means limited to.

The client terminal is a desktop having at least one web browser for accessing the internet banking server 600 and receiving a browsing-based wired web service based on the wired communication function based on TCP / IP and the wired communication function. (Desktop) characterized in that it comprises a wired terminal 145 including at least one computer and / or notebook (Notebook), the Internet banking through a predetermined network means including the Internet based on TCP / IP The server 600 and the communication channel for internet banking is characterized in that connected.

The financial system 660 is a computerized system provided to a predetermined financial institution to open at least one financial account to at least one or more customers and to process a financial transaction based on the financial account. An accounting system 662 for processing window services such as credit or receiving or trust or foreign exchange, an information system 663 for processing the headquarters business, branch office information support, and customer information management; Provides a variety of electronic financial services (e.g., internet banking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), other exchanges, call centers, financial settlements, etc. An external interface 661 and an interface corresponding to a middleware platform that provides interfacing between components in the financial system. The storage module 665 and at least to store and manage predetermined information (eg, ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. A database management system (DBMS) 664 that includes one or more databases 310 and includes the intention of the person skilled in the art and / or the type of each financial institution (eg, commercial bank, savings bank, trust bank) and the like. According to the purpose and characteristics of the financial system, it is possible to further include at least one or more components such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), and the present invention Those skilled in the art will clearly understand the detailed technical details of the financial system 660, and thus the detailed description thereof will be omitted for convenience. The present invention is not limited by the.

According to an embodiment of the present invention, the Internet banking server 600 interworks with the financial system 660 through the external system 661, and for this purpose, the external bank 661 has a predetermined interface means 655. It is preferable to include a component for interworking with the Internet banking server 600 through.

The internet banking server 600 may include a database 310 for storing web operation data including at least one web page source and / or digital content for providing a predetermined web service to at least one client terminal, and / or DBMS 620 including a database 310 for storing Internet banking information required to provide a predetermined Internet banking service in conjunction with the financial system 660, or the DBMS 620 according to the implementation method It is characterized in that the interworking with the data server provided, thereby providing a predetermined Internet banking service to at least one or more of the client terminal.

According to an embodiment of the present invention, the Internet banking information may be configured to authenticate a customer corresponding to the client terminal when at least one or more client terminals access and log in to the Internet banking server 600, and / or the customer Authenticate the financial transaction customer during at least one financial transaction through a banking server 600, and / or Authenticate a customer who subscribes to the financial product when the customer subscribes at least one financial product to the internet banking server 600. And the banking element information for processing the financial transaction corresponding to the financial transaction request in association with the financial system 660 when the financial transaction request is made from the customer through the client terminal. Is preferred, and at least one of the Or more, but the information may further be included, the figure 6, it will be omitted for convenience.

Referring to FIG. 6 according to an embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) use condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information are preferably included in the customer authentication information and stored in the DBMS 620.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) use condition information may be provided in a separate database 310 in addition to the customer authentication information. The invention is not limited.

For example, the non-face-to-face financial transaction password (or code) and password (or code) usage condition information registered through the information registration system shown in FIG. 1 is not the DBMS 620 provided on the Internet banking system. It may be provided in the DBMS 664 on the financial system, by which the present invention is not limited.

Referring to FIG. 6, the Internet banking server 600 connects and manages a Hyper-Text Transfer Protocol (HTTP) -based communication channel for providing a predetermined Internet banking service to at least one or more client terminals. 605, a web page operating unit 615 for operating a web page to be provided to at least one or more client terminals in cooperation with the web interface unit 605 and the DBMS 620, and the web page operating unit 615. ) A UI processing unit 610 for generating a user interface (UI) screen for providing a predetermined Internet banking service to at least one client terminal in cooperation with the at least one client terminal, and the DBMS (in conjunction with the UI processing unit 610). 620 extracts predetermined content for providing the Internet banking service, or a predetermined controller to be stored in the DBMS 620 from the client terminal. And a content management unit 625 for receiving the data, and a communication channel for processing Internet banking based on HTTP between the client terminal and the Internet banking server 600 by the function configuration. The user interface is implemented.

In addition, the Internet banking server 600 interoperates with the web page operation unit 615 through the UI processing unit 610 based on the customer authentication information of the Internet banking information to the at least one client terminal to the customer authentication interface screen The customer authentication unit 630 is provided or receives at least one or more customer authentication information based on the interface screen.

In addition, the Internet banking server 600 is connected to the web page operation unit 615 through the UI processing unit 610 based on the banking element information of the Internet banking information to the financial transaction-related interface screen to at least one client terminal Or a banking processor 635 provided with at least one financial transaction related information based on the interface screen.

In addition, the Internet banking server 600 is provided with a ledger processing unit 640 for performing a ledger processing procedure corresponding to the financial transaction requested by the customer in conjunction with the financial system 660 through a predetermined interface means 655. The ledger processing unit 640 may be connected to the external system 661 of the financial system 660 through the interface unit 655.

The customer authentication information stored in the DBMS 620 includes at least one of ID / PW information and personal information (eg, name, social security number, address, contact information, etc.) of a customer accessing the Internet banking server 600 through the client terminal. It is preferable to include the member information including the above, in this case, the customer authentication unit 630 in conjunction with the UI processing unit 610 to request the ID / PW information of the customer to the client terminal, the client terminal And receiving the ID / PW information from the ID, and comparing the received ID / PW information with ID / PW information included in the member information, thereby authenticating the customer.

According to an embodiment of the present invention, the ID / PW information may be provided to the Internet banking server 600 according to a conventional ID / PW transmission / reception procedure, but the ID / PW information may be provided to provide a more advanced security function. The client terminal is encrypted and received through at least one or more of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. Preferably, for this purpose, the customer authentication unit 630 preferably further comprises a functional configuration for decrypting the ID / PW information.

In addition, the customer authentication information stored in the DBMS 620 may be a certification authority information (eg, financial settlement agency) and certificate server information, and / or the authorized certificate that issued a predetermined certificate to a customer connected through the client terminal. Registrar information (e.g., if the accredited certificate is registered through the party, the party's information, if the accredited certificate is registered through the other party, etc.), and / or certificate information issued to the customer by the certificate authority; In this case, the customer authentication unit 630 requests a certificate based on the certificate of authentication through a certificate registered by the registrar to the certificate server of the certificate authority, and the result of the customer certification from the certificate server. By receiving, characterized in that for authenticating the customer.

According to the embodiment of the present invention, the customer authentication unit 630 provides the communication session information and the certificate information connected to the client terminal to the authentication server of the certification authority, the authentication server based on the communication session information After performing a customer authentication procedure corresponding to the certificate information to the client terminal, it is preferable to provide the result to the customer authentication unit 630.

In addition, the customer authentication information stored in the DBMS 620 is made of a copy of the authentication certificate of the customer accessing the Internet banking server 600 through the client terminal, and / or the predetermined authentication certificate to the customer It is preferable to include the directory connection information of the issuing certification authority, wherein the customer authentication unit 630 is based on the certificate to the client terminal in conjunction with the authentication server of the certification authority that issued a predetermined certificate to the customer Requesting customer information, receiving the certificate-based customer information from the client terminal, and authenticating the customer by authenticating the certificate-based customer information through a copy of the certificate and / or a directory of a certification authority. .

According to the exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 630 or a predetermined random number generated by the client terminal. Encrypting the random number through the at least one encryption method of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method through the public certificate To provide to the customer authentication unit 630 (for example, if the random number is generated in the client terminal further includes a random number in the form of a plain text), the customer authentication unit 630 and a copy of the authentication certificate of the customer and / Or by comparing and decrypting an encrypted random number based on the certificate information of the customer extracted from the directory, and / or By intercomparison by encrypting the plaintext form of a random number (e.g., a random number, and / or a random number generated by the client terminal generated by the client authentication unit 630), it is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information is stored information previously stored in the client terminal (eg, information stored in the storage device of the client terminal by the Internet banking server 600, and / or the Information (or system information) previously stored in the client terminal, and / or storage information (eg, IC card (and / or IC chip) read out from the IC card (and / or IC chip) interoperating with the client terminal. A serial number, and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuing authority), in which case the client terminal uses the certificate. Encrypting the stored information in at least one of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. Equation is encrypted through the formula provided to the customer authentication unit 630, and the encrypted storage based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory in the customer authentication unit 630 It is desirable to authenticate the customer by decrypting and comparing the information.

According to another exemplary embodiment of the present invention, the certificate-based customer information is input information input through an input means provided in the client terminal (for example, information input through a key input device provided in the client terminal, and And / or information input through an input device (for example, a local area communication device, etc.) other than a key input device provided in the client terminal, in which case the client terminal symmetrics the input information through the public certificate. (Or secret key) encryption and / or public key encryption, and / or electronic envelope encryption, and / or key exchange encryption through at least one or more of the encryption method provided to the customer authentication unit 630 And, in the customer authentication unit 630, the copy of the customer's official certificate and / or the certificate of the customer extracted from the directory It is preferable to authenticate the customer by decrypting and comparing the encrypted input information based on the certificate information.

In addition, the customer authentication information stored in the DBMS 620 is preferably made of OTP generation information for generating an OTP authentication code matching the OTP code generated through the One Time Password (OTP) authenticator provided to the customer, this When the customer authentication unit 630 interoperates with the UI processing unit 610 to request a predetermined OTP code to the client terminal, receives the OTP code from the client terminal, based on the OTP generation information By generating an OTP authentication code, by comparing the received OTP code and the generated OTP authentication code, it characterized in that to authenticate the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method in the client terminal to provide a more advanced security function And / or is encrypted and received through at least one encryption method among key exchange encryption methods, and for this purpose, the customer authentication unit 630 preferably further includes a function configuration for decrypting the OTP code. Do.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 620. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the client terminal to the Internet banking server When a non-face-to-face financial transaction is requested using a password (or code), the customer authentication unit 630 checks whether the non-face-to-face financial transaction requested from the client terminal satisfies the password (or code) use condition information. do.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, the customer authentication unit 630 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making the non-face-to-face financial transaction password (or code) It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the customer authentication unit 630 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while If the non-face-to-face financial transaction using the face-to-face financial transaction password (or code) has never been performed, the customer authentication unit 630 processes the face-to-face financial transaction through the face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed N (N> 1) or more times, the customer authentication unit 630 performs the face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid and the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 630 performs the face-to-face finance. Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the customer authentication unit 630 checks whether the non-face-to-face financial transaction amount (or code) exceeds the limit amount, thereby making the non-face-to-face financial transaction password (or code) face-to-face. It is desirable to verify that financial transactions are currently available.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the customer authentication unit 630 is the non-face-to-face finance The non-face-to-face financial transaction through the transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 630 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 630 is the non-face-to-face financial transaction password (or code) By checking whether the non-face-to-face financial transaction type through) matches the financial transaction type included in the password (or code) terms and conditions, and whether the non-face-to-face financial transaction through the password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the financial transaction type included in the password (or code) using condition information, the customer authentication unit 630 may be configured to use the non-face-to-face financial transaction password (or code). The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the type of non-face-to-face financial transaction through the face-to-face financial transaction password (or code) When matching with the included financial transaction type, the customer authentication unit 630 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 630 is linked with the UI processing unit 610 to the client terminal. Request the financial transaction password (or code), receive the financial transaction password (or code) from the client terminal, and receive the financial transaction password (or code) and the financial transaction password stored in the DBMS 620. By comparing the (or code), the validity for the customer and / or the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer characterized in that the authentication.

When at least one financial transaction is requested from the client terminal, the banking processor 635 provides a financial transaction request information input interface screen corresponding to the requested financial transaction to the client terminal in cooperation with the UI processor 610. When predetermined financial transaction request information is input (or selected) from the client terminal through the financial transaction request information input interface screen, the predetermined financial transaction request information corresponding to the financial transaction request information is referred to with reference to the banking element information. Generate (or extract) financial transaction information and provide it to the ledger processing unit 640.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 620. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the client terminal to the Internet banking server When a non-face-to-face financial transaction is requested using a password (or code), the banking processor 635 interoperates with the customer authentication unit 630 to display the non-face-to-face financial transaction password (or code) on the financial transaction request information input interface screen. Providing to the client terminal further comprising a predetermined user interface for inputting Preferred, corresponding to the client terminal this is preferably transmitted on the in a financial transaction request information further includes a non-face-to-face financial transaction password (or code) to the Internet banking server.

In receiving the predetermined financial transaction request information from the client terminal, when the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processing unit 635 is the customer authentication unit. It is preferable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with (630), whereby through the non-face-to-face financial transaction password (or code) confidentiality (Confidentiality), Authentication, Integrity and Nonrepudiation are secured.

In receiving the predetermined financial transaction request information from the client terminal, when following the conventional wireless banking procedure, the banking processing unit 635 is linked with the customer authentication unit 630 through the at least one customer authentication method through the financial It is preferable to authenticate the customer who requested the transaction, thereby making sure of the confidentiality and authentication of the customer who requested the financial transaction through the client terminal (or a customer who has entered (or selected) and transmitted the financial transaction request information). ), Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 635 at the client terminal to secure the confidentiality, authentication, integrity and non-repudiation of at least one or more financial transaction request information transmitted from the client terminal. The electronic signature of the customer is attached to the financial transaction request information, and the financial transaction request information to which the electronic signature is attached is preferably encrypted and transmitted using a public key encryption method according to the public key infrastructure. In this case, the banking processor ( 635 receives the financial transaction request information from the client terminal, decrypts it with a public key decryption scheme according to the public key infrastructure, and confirms the electronic signature, thereby ensuring confidentiality of the financial transaction request information. , Authentication, integrity and nonrepudiation are ensured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 635 to secure the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the client terminal for at least one or more financial transactions, Preferably, the client terminal encrypts and transmits the financial transaction request information in an electronic envelope method. In this case, the banking processor 635 receives the financial transaction request information from the client terminal and decrypts the financial transaction request information in an electronic envelope method. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

The ledger processing unit 640 is interlocked with the financial system 660 through a predetermined interface means 655, and predetermined financial transaction information is generated (or extracted) by the banking processing unit 635. In this case, at least one ledger information to be extracted from the ledger on the financial system 660 in response to the financial transaction information is identified, and the identified from the ledger on the financial system 660 through the interface means 655. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 660 in response to the financial transaction information, and through the interface means 655 the financial system ( The generated (or extracted) ledger record information is recorded in the ledger on 660.

For example, the financial transaction requested from the client terminal is an account inquiry transaction for the last month, and the banking processing unit 635 generates financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry (or Is extracted), the ledger processing unit 640 is linked to the account ledger (and / or the customer ledger) on the financial system 660 through the interface means 655 based on the financial transaction information for the account inquiry The transaction history of the last month of the transaction history of the account is extracted from the transaction history information associated with the account ledger and provided to the banking processor 635.

7A, 7B, and 7C illustrate a non-face-to-face financial transaction process through a non-face-to-face financial transaction password (or code) according to one embodiment of the present invention.

More specifically, FIGS. 7A-7B and 7C illustrate at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or Or a home banking system), wherein the client terminal uses a non-face-to-face financial transaction password (or code) through a TCP / IP-based network (eg, the Internet). When a transaction is requested, the non-face-to-face financial transaction password (or code) using the non-face-to-face financial transaction password (or code) and password (or code) usage condition information registered through the information registration system shown in FIG. Or a method for performing an Internet banking procedure through a code), having ordinary skill in the art to which the present invention pertains. In this regard, the non-face-to-face financial transaction process through the non-face-to-face financial transaction password (or code) performed through the Internet banking system shown in FIG. 7 by referring to and / or modifying FIGS. 7A, 7B, and 7C. Various implementation methods may be inferred, but the present invention includes all the implementation methods inferred, and is not limited to the implementation methods shown in FIGS. 7A, 7B, and 7C.

That is, FIGS. 7A, 7B, and 7C are registered in the client terminal through the information registration system shown in FIG. 1 when accessing the Internet banking server through a predetermined browser program provided in the client terminal. Although a non-face-to-face financial transaction password (or code) and a method of processing non-face-to-face financial transactions based on the Internet banking system using the password (or code) usage condition information are shown, it is common in the art to which the present invention belongs. Those skilled in the art can refer to and / or modify an Internet banking-based financial transaction channel connection method using the browser programs shown in FIGS. 7A, 7B, and 7C to select a predetermined Internet banking program mounted on the client terminal. Based on the information registration system shown in FIG. By using the non-face-to-face financial transaction password (or code) and password (or code) using condition information registered through it can be inferred the implementation method for processing the face-to-face financial transaction based on the Internet banking system, The invention includes provided internet banking based financial transactions based on the internet banking program, whereby the invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the Internet banking system by referring to and / or modify the Internet banking-based financial transaction method shown in Figures 7a, 7b and 7c, telebanking It would be possible to infer a non-face-to-face financial transaction method through another banking system, such as a system and / or a wireless banking system and / or a TV banking system and / or a home banking system, but the present invention is directed to the telebanking system and / or wireless banking. A system and / or a TV banking system and / or a home banking system and / or a non-face-to-face channel banking system, which is proposed in the future, includes all kinds of non-face-to-channel based financial transactions, and the technical configuration of the present invention is shown in FIG. It is by no means limited to the case of Internet banking shown in Figs. 7B and 7C.

In the following FIGS. 7A, 7B and 7C, the client terminal shown in FIG. 6 is referred to as "terminal" for convenience, and the Internet banking server is referred to as "server" for convenience.

7A, 7B, and 7C, when the terminal executes a predetermined browser program and accesses the server through the TCP / IP based network (700), the server connects the terminal and the server through the browser. The communication channel is connected to the communication channel (705), wherein the communication channel is generated (or extracted) by a request of a browser program provided to the client terminal in the server and transmitted to the client terminal. This means that a predetermined communication session is allocated so that a browser program included in a client terminal can receive at least one or more information (or data) input (or selected) based on a predetermined user interface included in the web page. .

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server may be configured with the Internet banking program and at least one or more information based on a predetermined communication protocol defined in the internet banking program. Or a communication channel for transmitting / receiving data).

When the communication channel is connected as described above, the server is the non-face-to-face financial transactions in the non-face-to-face financial transaction password (or code) in accordance with the present invention and the non-face-to-face financial transactions according to the conventional Internet banking-based non-face-to-face financial transactions A web page including a user interface for selecting a non-face-to-face financial transaction method is generated (or extracted) and provided to the terminal (710), and correspondingly, the terminal provides a user interface included in the web page. Through the non-face-to-face financial transaction password (or code) according to the present invention through the non-face-to-face financial transactions based on conventional Internet banking-based non-face-to-face financial transactions, the non-face-to-face financial transaction method is selected (715). .

If the terminal does not select the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention through the user interface, the non-face-to-face financial transaction method according to the conventional Internet banking-based non-face-to-face financial transaction is selected If 720, the terminal performs the conventional Internet banking-based non-face-to-face financial transaction procedure shown in Figure 8 and / or 9.

On the other hand, if the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention is selected through the user interface (720), the terminal through the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (725). The server uses the password (or code) registered through the information registration system shown in FIG. Or (code) verifies the validity of the number of times of non-face-to-face financial transactions (730).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the number of times of non-face-to-face financial transactions using the non-face-to-face financial transaction password (or code) is not authenticated (735), the server generates a web page including predetermined financial transaction error information and transmits it to the terminal. In step 740, the Internet banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the number of times for the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is authenticated (735), the server selects the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). A web page including a predetermined financial transaction type selection interface is generated and provided to the terminal (745). In response, the terminal sends the non-face-to-face financial transaction password (or code) through the financial transaction type selection interface. Financial transaction type selection information through the input (or selection) (750).

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (755), the terminal transmits the financial transaction type selection information to the server (760), and the server In operation 765, the validity of the non-face-to-face financial transaction type through the password (or code) using the password (or code) registered through the information registration system shown in FIG.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to check whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). Or a non-face-to-face financial transaction through code) as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If matched with the server, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (770), the server generates a web page including predetermined financial transaction error information and transmits it to the terminal. (772), the non-face-to-face financial transaction process based on the Internet banking is not performed.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (770), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). The terminal generates (or extracts) a webpage including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) (774), and the financial transaction interface. The web page including the transmission is output to the terminal (776).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined internet banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferable to include a user interface for inputting (or selecting) a non-face-to-face financial transaction password (or code) to confirm the validity of the transaction.

In addition, the web page transmission and / or output process is preferably performed at least once in accordance with the Internet banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal transmits predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and predetermined non-face-to-face financial transaction password (or code) for authenticating the non-face-to-face financial transaction through the financial transaction interface. Enter (or select) 778.

If the terminal enters (or selects) a non-face-to-face financial transaction password (or code) through the financial transaction interface (780), the terminal receives the input (or selected) financial transaction request information. And a non-face-to-face financial transaction password (or code) to the server (782), and the server uses the password (or code) registered through the information registration system shown in FIG. The validity of the non-face-to-face financial transaction amount through a password (or code) is verified (784).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). The server checks whether the non-face-to-face financial transaction password (or code) exceeds the limit by checking whether the non-face-to-face financial transaction password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). ), The non-face-to-face financial transaction through) is treated as invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) does not exceed the limit included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated through the password (or code) use condition (786), the server may include predetermined financial transaction error information. A web page is generated and transmitted to the terminal (788), and the internet banking-based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) terms of use (786), the server receives the received non-face-to-face financial transaction password (or Code) is validated (790).

According to an embodiment of the present invention, the validity authentication process for the non-face-to-face financial transaction password (or code) may include a non-face-to-face provided on the non-face-to-face financial transaction password (or code) received from the terminal and the Internet banking system. It is preferable to include the process of comparing the financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (792), the server generates a web page including predetermined financial transaction error information and transmits it to the terminal (788), and the Internet banking Do not follow a non-face-to-face financial transaction process.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (792), the server performs a financial transaction procedure corresponding to the financial transaction request information (794).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the Internet banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If the financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs during the financial transaction procedure) (796), the server generates a web page containing predetermined financial transaction error information. In step 788, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (796), the server generates a web page including the predetermined financial transaction history information and transmits it to the terminal (798), the financial transaction requested from the terminal To complete.

8 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to one embodiment of the present invention.

More specifically, FIG. 8 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the Internet banking system shown in FIG. 6, when the client terminal requests a non-face-to-face financial transaction according to a conventional internet banking procedure through a TCP / IP-based network (for example, the Internet, etc.), the Internet banking server is conventionally used. An embodiment of the present invention relates to a method of connecting an internet banking-based financial transaction channel between the client terminal and an internet banking server by performing a defined customer authentication procedure. A non-face-to-face finance between the client terminal and the internet banking server by referring to and / or transform Would have a variety of embodiments how to connect the Internet banking based financial transaction channel for the future can not be inferred, the present invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 8.

That is, FIG. 8 is based on the browser program when accessing the Internet banking server through a predetermined browser program (for example, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. Although the implementation method of connecting an internet banking-based financial transaction channel for non-face-to-face financial transactions between the client terminal and the internet banking server is illustrated, a person having ordinary knowledge in the technical field to which the present invention pertains is illustrated in FIG. The non-face-to-face financial transaction between the client terminal and the internet banking server is performed based on a predetermined internet banking program mounted on the client terminal by referring to and / or modifying an internet banking-based financial transaction channel connection method using a browser program. Internet banking base for It would be possible to infer an implementation method of linking a financial transaction channel, but the present invention includes provided internet banking based financial transactions based on the internet banking program, whereby the present invention is not limited thereto.

Also, those skilled in the art may refer to and / or modify the Internet banking-based financial transaction channel connection method shown in FIG. 8, in addition to the internet banking system, a telebanking system and / or Other banking systems, such as wireless banking systems and / or TV banking systems and / or home banking systems, may infer an implementation method for connecting non-face-to-face channel-based financial trading channels for non-face-to-face financial transactions. The present invention includes all kinds of non-face-to-face channel-based financial transactions, including telebanking systems and / or wireless banking systems and / or TV banking systems and / or home banking systems and / or future non-face-to-face banking systems. Is not limited to the case of the Internet banking shown in FIG.

Hereinafter, in FIG. 8, the client terminal is referred to as a "terminal" for convenience, and the Internet banking server is referred to as a "server" for convenience.

Referring to FIG. 8, when the non-face-to-face financial transaction is performed according to a conventional internet banking procedure in the process illustrated in FIG. 7, the server may generate a predetermined web page (eg, extracted) to provide to the terminal (eg, In the Internet banking main page, a predetermined security module for internet banking is mounted on the terminal, and / or a predetermined script for checking whether to update the security module is provided to the terminal, In step 810, the terminal is equipped with a predetermined security module for internet banking and / or updates the security module.

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server requests the Internet banking program for version information and / or last update date information, and the like. / Or a security module associated with the Internet banking program) can be updated.

If a predetermined security module is to be mounted and / or updated in the terminal (815), the server transmits the latest version of the security module for internet banking to the terminal according to a remote program installation procedure defined in the browser program. And mount and / or update (820).

If the terminal does not need to mount and / or update the latest version of the security module for internet banking (825), or if the terminal does not need to mount and / or update the security module for internet banking (815), the server may By activating the security module for Internet banking mounted on the terminal, to connect the security channel for Internet banking (or switch the communication channel between the terminal and the server to a secure channel) between the terminal and the server (830), where the security for Internet banking A channel is attached to a predetermined digital signature and / or at least one encryption method (or data) of information (or data) required for security among information (or data) included in a web page to be provided from the server to the terminal. And / or provide an encryption by using an encryption algorithm, the terminal may verify the electronic signature and / or the encryption scheme (and / or an encryption algorithm). Means a communication channel for decoding the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to the information, and the information to be provided from the terminal to the server for non-face-to-face financial transactions ( Or a predetermined electronic signature to the data) and / or encrypted and transmitted with at least one or more encryption schemes (and / or encryption algorithms), the server verifies the digital signature and / or the encryption scheme (and / or Or a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption algorithm).

According to another exemplary embodiment of the present invention, when a predetermined internet banking program is provided in the client terminal, the Internet banking-based secure channel is information to be provided from the server to the terminal according to a communication protocol defined in the internet banking program. (Or data) by attaching a predetermined digital signature and / or by providing it by encrypting with at least one encryption method (and / or encryption algorithm), the terminal confirms the electronic signature and / or the encryption method (and And / or a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption algorithm), and also provided by the terminal to the server for non-face-to-face financial transactions. Attach a predetermined electronic signature to information (or data) to be performed and / or at least one When encrypted by the above encryption method (and / or encryption algorithm) and transmitted, the server confirms the digital signature and / or a predetermined decryption method (and / or decryption) corresponding to the encryption method (and / or encryption algorithm). Algorithm) means a communication channel to decode the information (or data).

According to the present invention, the security module is to perform an electronic signature attachment, and / or encryption, and / or protection function for the information (or data) by using the customer's authorized certificate mounted on the terminal It features.

When the secure channel for internet banking is connected, the server requests the terminal to perform an internet banking customer authentication procedure through the browser program (835).

According to an exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (eg, ID / PW, customer number, etc., registered by the customer during the internet banking application process) through the terminal. ) Is input (or generated) and transmitted to the server, wherein the server comprises authenticating a customer connected through the terminal as an internet banking customer based on the customer authentication data, wherein the customer authentication data It is preferable that the digital signature and / or encrypted is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (for example, an ID / PW or customer number registered by the customer during the internet banking application process) through the terminal. And the like) are input (or generated) and transmitted to the authentication server, the authentication server authenticates the customer connected through the terminal as the Internet banking customer based on the customer authentication data, and provides the result to the server. In this case, it is preferable that the customer authentication data include public certificate-based authentication data, and the authentication server is a server for authenticating the public certificate-based authentication data.

Thereafter, the terminal inputs (or generates) predetermined customer authentication data according to the request, transmits the electronic signature and / or encryption to the server (and / or authentication server) through the security module, and performs internet banking customer authentication. Request (840), the server (and / or authentication server) authenticates the customer connected through the terminal as the Internet banking customer for non-face-to-face financial transactions based on the customer authentication data received from the terminal. (845).

If the Internet banking customer authentication fails (850), the server blocks the Internet banking secure channel for the terminal (855), so that the Internet banking-based financial transactions are not made through the terminal.

On the other hand, if the Internet banking customer authentication is successful (850), the server is connected to the security module provided in the terminal to convert the Internet banking security channel into an internet banking-based financial transaction channel (860), where the Internet banking based The financial transaction channel refers to at least one financial transaction request requested from the terminal, and the server accesses the ledger on the financial system to perform the requested financial transaction (eg, account inquiry, account transfer, bill payment, .. Communication channel).

9 is a diagram illustrating a conventional non-face-to-face financial transaction method according to an embodiment of the present invention.

More specifically, FIG. 9 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the Internet banking system shown in FIG. 6, after the client terminal accesses the Internet banking server through the process shown in FIG. 8 and performs a conventional customer authentication procedure, between the client terminal and the Internet banking server. When an internet banking-based financial transaction channel is connected, the client terminal requests a non-face-to-face financial transaction from the client terminal through the internet banking-based financial transaction channel, and processes the requested financial transaction from the internet banking server. As a result, the client terminal through the internet banking-based financial transaction channel As an embodiment of the present invention, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing to establish an internet banking-based financial transaction channel between the client terminal and the internet banking server. Although various financial transaction methods may be inferred, the present invention includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

That is, FIG. 9 shows the Internet banking-based financial transaction channel by accessing the Internet banking server through a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. In this connection, although the implementation method for processing the financial transaction requested from the client terminal through the browser program is illustrated, those skilled in the art to which the present invention belongs, the browser program shown in FIG. By referring to and / or modifying the Internet banking-based financial transaction method used, various types of Internet banking-based financial transaction methods are performed between the client terminal and the Internet banking server based on a predetermined internet banking program mounted on the client terminal. It may be inferred, but the present invention includes provided Internet banking based financial transactions based on the Internet banking program, whereby the present invention is not limited thereto.

In addition, those skilled in the art to which the present invention pertains may refer to, and / or modify, the Internet banking-based financial transaction method shown in FIG. 9, in addition to the Internet banking system, a telebanking system and / or wireless banking. Other banking systems, such as systems and / or TV banking systems, may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention is directed to the telebanking system and / or wireless banking system and / or TV. It includes all types of non-face-to-face channel-based financial transactions including banking system and / or non-face-to-face channel banking system proposed in the future, the technical configuration of the present invention is limited to the case of the Internet banking shown in FIG. Never.

In the following figure, the client terminal is referred to as " terminal " for convenience and the Internet banking server is referred to as " server " for convenience.

Referring to FIG. 9, when the internet banking-based financial transaction channel between the terminal and the server is connected through the process illustrated in FIG. 8, the terminal may be connected to the internet banking-based financial transaction channel for non-face-to-face financial transactions. When the server requests an internet banking-based financial transaction (900), the server generates (or extracts) a web page including a predetermined financial transaction interface corresponding to the requested non-face-to-face financial transaction (910), and the internet The generated (or extracted) web page is transmitted to the terminal and output through the banking-based financial transaction channel (915).

According to an embodiment of the present invention, the financial transaction interface may perform predetermined financial transaction request information for processing a predetermined internet banking based financial transaction based on the selected (or input) account information, and / or the financial transaction. In order to verify the validity of the requesting internet banking customer, a predetermined password (e.g. account password) and / or security code (e.g., a security code printed on the security card issued to the customer during the internet banking application process) and / or Enter (or select) one time password (OTP) (e.g., a one-time password generated through an OTP authenticator (or OTP certification program) provided to a customer by a financial institution during the internet banking application process (or after an internet banking application). It is preferable to further include a user interface.

In addition, the web page transmission and / or output process is preferably performed at least once in accordance with the Internet banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) financial transaction request information including at least one for each Internet banking-based financial transaction through the financial transaction interface (920).

If the financial transaction request information is input (or selected) through the financial transaction interface in the terminal (925), the terminal transmits the input (or selected) financial transaction request information to the server through the financial transaction channel. Transmit (930).

According to an embodiment of the present invention, transmitting the financial transaction request information (or selected) inputted through the financial transaction channel to the server may include the financial transaction request information input (or selected) through the financial transaction interface. It comprises the electronic signature and / or encryption through the security module provided in the terminal and transmitting to the server.

Thereafter, the server checks the validity of the financial transaction request information by receiving and reading the financial transaction request information through the financial transaction channel (935).

According to an embodiment of the present invention, receiving and reading the financial transaction request information through the financial transaction channel to confirm validity may decode the financial transaction request information received from the terminal and / or the financial transaction request information. This includes checking the digital signature attached to it.

In addition, the validation of the financial transaction request information, preferably, further comprises authenticating a password and / or security code and / or OTP included in the financial transaction request information.

If the validity of the financial transaction request information is not authenticated (940), the server generates a web page including predetermined financial transaction error information and transmits the generated web page to the terminal (945), corresponding to the financial transaction request information. Do not perform financial transaction procedures.

On the other hand, if the validity of the financial transaction request information is authenticated (940), the server performs a financial transaction procedure corresponding to the financial transaction request information (950).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the Internet banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If a financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs during the financial transaction procedure) (955), the server generates a web page including predetermined financial transaction error information. In step 945, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (955), the server generates a web page including the predetermined financial transaction history information and transmits it to the terminal (960), the financial transaction requested from the terminal To complete.

10 is a block diagram of a non-face-to-face financial transaction system for processing a face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, FIG. 10 illustrates at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In a telebanking system operating based on a voice calling network including a public switched telephone network (PSTN) and / or a mobile communication network, a predetermined registration system is registered through an information registration system shown in FIG. A non-face-to-face financial transaction password (or code) based on a non-face-to-face financial transaction system configuration for processing the face-to-face financial transaction without at least one or more authorized certificates and / or security code in the Internet banking system, the present invention Those skilled in the art may refer to and / or modify the drawing 10 to perform the telebanking. Other non-face-to-face financial transaction systems (e.g., an Internet banking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system) registered through the information registration system shown in FIG. While various implementation methods may be inferred to process non-face-to-face financial transactions without at least one or more accredited certificates and / or security codes based on a given non-face-to-face financial transaction password (or code), the present invention may infer the above-described implementation. It includes all the methods, it is not limited to the embodiment shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). ), A telebanking system operating based on a voice call network including a public switched telephone network (PSTN) and / or a mobile communication network, has a predetermined voice call function and a dual tone multi-frequency signal (DTMF). At least one call terminal having a processing function and a telebanking server 1000 for providing a telebanking service to at least one of the call terminals, the telebanking server 1000 is a predetermined interface means ( 1055 is associated with a financial system 1060 that processes the financial business required to provide the telebanking service.

Those of ordinary skill in the art to which the present invention pertains can easily guess the omitted components for convenience because they do not include the core technical matters of the present invention in the telebanking system shown in FIG. The present invention is not limited to the omitted elements.

That is, FIG. 10 illustrates a method of implementing a telebanking system for processing a non-face-to-face financial transaction between the call terminal and the telebanking server based on the voice call function and the DTMF signal processing function provided in the call terminal. Those skilled in the art may refer to and / or modify a telebanking system using the voice call function and the DTMF signal processing function shown in FIG. It is possible to infer a configuration of a telebanking system for processing non-face-to-face financial transactions between the call terminal and the telebanking server through an intelligent communication network based on a communication function. However, the present invention provides a service based on the data communication function. Including a telebanking system, by which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the telebanking system by referring to and / or modify the configuration of the telebanking system shown in Figure 10, non-face-to-channel based financial transactions according to the present invention It would be possible to infer another banking system, such as an internet banking system and / or a wireless banking system and / or a TV banking system and / or a home banking system, but the present invention provides the telebanking system and / or the wireless banking system and / or Or all types of non-face-to-face banking systems, including TV banking systems and / or home banking systems and / or non-face-to-face channel banking systems proposed in the future, wherein the technical configuration of the present invention is illustrated in FIG. It is by no means limited to.

In FIG. 10, the non-face-to-face financial transaction password (or code) may be an accurate term based on voice-based initial interface setting information due to the characteristics of a telebanking system operating based on a voice call channel, but may be applied to other non-face-to-face financial transaction systems. Although the non-face-to-face financial transaction password (or code) is used as it is for the term unification with the corresponding embodiment, the person having ordinary knowledge in the technical field to which the present invention belongs, the non-face-to-face financial transaction password (or code) It will be able to easily infer what is meant in the telebanking system shown in Figure 10, whereby the present invention is not limited.

The call terminal accesses the telebanking server 1000 based on a wired telephone function based on a PSTN and the wired telephone function, and provides an automatic response service (ARS) based on DTMF signal processing. And at least one wired telephone having a voice call function and a DTMF signal processing function for receiving, wherein the call terminal is non-face-to-face with the telebanking server 1000 through the PSTN. It is characterized by connecting a currency channel for financial transactions.

In addition, the call terminal accesses the tele-banking server 1000 based on the CDMA-based mobile communication network based on the wireless communication function and the wireless call function, and based on DTMF signal processing, an answering service (ARS) And at least one mobile telephone (or wireless telephone) having a voice call function and a DTMF signal processing function for receiving the call, and the call terminal is connected to the telebanking server 1000 through the mobile communication network. ) And a currency channel for non-face-to-face financial transactions.

In addition, the call terminal is connected to the telebanking server 1000 based on VoIP (Voice over Internet Protocol) -based VoIP network and the wired / wireless call function to answer the DTMF signal processing based answering service (ARS). And at least one VoIP terminal having a voice call function and a DTMF signal processing function for receiving the call), wherein the call terminal is a non-face-to-face finance with the telebanking server 1000 through the VoIP network. It is characterized by connecting a currency channel for the transaction.

The financial system 1060 is a computer system provided in a predetermined financial institution to open at least one financial account to at least one or more customers, and to process a financial transaction based on the financial account. An accounting unit 1062 that handles a window service such as credit or receiving or trust or foreign exchange, an information system 1063 that processes the headquarters business, supports branch information, and manages customer information; Provides various electronic financial services (e.g., telebanking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), line transfer, call center, financial settlement, etc. by connecting with external computer networks including companies, retailers and card companies An external interface 1061, and an interface corresponding to a middleware platform that provides interfacing between components in the financial system. At least for storing and managing the eS module 1065 and predetermined information (e.g., ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. It includes a database management system (DBMS) 1064 (Database Management System) including one or more databases 310, the intention of the person skilled in the art and / or the type of each financial institution (eg commercial banks, savings banks, trust banks) and the financial Depending on the purpose and characteristics of the system, it is possible to further include at least one or more components such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), and the present invention belongs to Those skilled in the art will clearly understand the detailed technical details of the financial system 1060, and thus the detailed description thereof will be omitted for convenience. , To which the present invention is not limited.

According to the method of the present invention, the telebanking server 1000 is interworked with the financial system 1060 through the external system 1061, and for this purpose, a predetermined interface means 1055 is provided to the external system 1061. It is preferable to include a component for interworking with the tele-banking server 1000 through.

The telebanking server 1000 may include at least one announcement source (eg, voice announcement source for financial transaction guidance) and a transaction source (eg, to provide a predetermined answering service (ARS) to at least one call terminal). Requesting to provide a predetermined telebanking service in conjunction with a database 310 for storing voicement data including a voicement source comprising a combination of DTMF signals input by a customer), and / or the financial system 1060. And a DBMS 1020 including a database 310 for storing the telebanking information, or interworking with a data server provided with the DBMS 1020 according to an embodiment. A predetermined telebanking service is provided to the above call terminal.

According to an embodiment of the present invention, the telebanking information may be configured to authenticate a customer corresponding to the call terminal when at least one or more call terminals access and log in to the telebanking server 1000, and / or the customer Authenticate the financial transaction customer during at least one financial transaction through a banking server 1000, and / or authenticate the customer who subscribes to the financial product when the customer subscribes to the telebanking server 1000 with at least one financial product. And the banking element information for processing the financial transaction corresponding to the financial transaction request by interworking with the financial system 1060 when the financial transaction request is made from the customer through the call terminal. Preferably, at least one or more information required for telebanking may be further included according to the intention of a person skilled in the art. However, in FIG. 10, this is omitted for convenience.

Referring to FIG. 10 according to an embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information may be included in the customer authentication information and stored in the DBMS 1020.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) use condition information may be provided in a separate database 310 in addition to the customer authentication information. The invention is not limited.

For example, the non-face-to-face financial transaction password (or code) registered through the information registration system shown in FIG. 1 is provided in the DBMS 1064 on the financial system instead of the DBMS 1020 provided on the telebanking system. The present invention is not limited thereto.

Referring to FIG. 10, the telebanking server 1000 connects to and manages a voice call channel for providing a predetermined telebanking service to at least one call terminal. A DTMF processing unit 1015 for reading a number / character corresponding to the DTMF signal by reading a DTMF signal received from at least one call terminal in connection with a setting unit 1005 and the DBMS 1020, and the DTMF A UI processing unit 1010 for generating a voice-based user interface (UI) screen for providing a predetermined telebanking service to at least one call terminal in cooperation with the processing unit 1015, and the UI processing unit 1010. Providing the telebanking service through at least one voicement data (eg, announcement source, and / or transaction source) stored in the DBMS 1020 in association. And a voicement management unit 1025 for generating (or extracting) a predetermined voicement (for example, a guidement and / or a transaction). A communication channel and a user interface for processing voice-based telebanking are implemented between the banking servers 1000.

In addition, the telebanking server 1000 may provide a customer authentication interface to at least one call terminal by interworking with the DTMF processor 1015 through a UI processor 1010 based on the customer authentication information of the telebanking information. On the basis of the interface is characterized in that it comprises a customer authentication unit 1030 receives at least one or more customer authentication information.

In addition, the telebanking server 1000 may provide a financial transaction related interface to at least one call terminal by interworking with the DTMF processor 1015 through a UI processor 1010 based on the banking element information of the telebanking information. And a banking processor 1035 provided with at least one financial transaction related information based on the interface.

In addition, the telebanking server 1000 includes a ledger processing unit 1040 that performs a ledger processing procedure corresponding to the financial transaction requested by the customer in cooperation with the financial system 1060 through a predetermined interface means 1055. The ledger processing unit 1040 may be connected to the external system 1061 of the financial system 1060 through the interface unit 1055.

The customer authentication information stored in the DBMS 1020 may include ID / PW information and personal information (eg, name, resident registration number, address, contact information, etc.) of a customer accessing the telebanking server 1000 through the call terminal. It is preferable to include a member information including at least one, wherein the customer authentication unit 1030 in conjunction with the UI processing unit 1010 requests the ID / PW information of the customer to the call terminal, And receiving the ID / PW information from the call terminal, and comparing the received ID / PW information with ID / PW information included in the member information, thereby authenticating the customer.

According to the embodiment of the present invention, the ID / PW information may be provided to the telebanking server 1000 according to a conventional ID / PW transmission and reception procedure, but the voice call network includes an intelligent network capable of data communication. When the call terminal is provided with a data communication function, the ID / PW information is provided in the call terminal in a symmetric key (or secret key) encryption method, and / or public key encryption method, And / or is encrypted and received through at least one or more of an electronic envelope encryption scheme and / or a key exchange encryption scheme. For this purpose, the customer authentication unit 1030 may be configured to decrypt the ID / PW information. It is preferable to further comprise a functional configuration.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, customer authentication information stored in the DBMS 1020 is transmitted to a customer connected through the call terminal. Certification authority information (eg, KFTC) and certificate server information, and / or certification authority registration authority information (e.g., if the certification certificate is registered through the process, the certification information, the certification certificate) If the registration through the other line, such as the other line information), and / or the certificate information issued to the customer by the certification authority is preferably made to further include, wherein the customer authentication unit 1030 is a certificate server of the certification authority Requesting a certificate-based customer certification through an accredited certificate registered by the registrar and requesting the customer from the authentication server By receiving an authentication result, the customer is characterized in that the authentication.

According to the exemplary embodiment of the present invention, when the voice call network includes an intelligent network capable of data communication, and the data communication function is provided in the call terminal, the customer authentication unit 1030 is an authentication server of the authentication authority. And providing the communication session information and the certificate information connected to the call terminal, wherein the authentication server performs a customer authentication procedure corresponding to the certificate information to the call terminal based on the communication session information, and then outputs the result. It is preferable to provide to the customer authentication unit 1030.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, customer authentication information stored in the DBMS 1020 is transmitted through the call terminal. It is preferable to include a copy of the authentication certificate of the customer to access the (1000), and / or directory connection information of the certification authority that issued a predetermined certificate to the customer, wherein the customer authentication unit 1030 requests the certificate-based customer information to the call terminal in conjunction with the authentication server of the certification authority that issued the predetermined certificate to the customer, receives the certificate-based customer information from the call terminal, and the certificate-based By authenticating customer information through a copy of the accredited certificate and / or through a directory of It characterized in that to authenticate the customer.

According to the exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 1030 or a predetermined random number generated by the call terminal. Encrypting the random number through the at least one encryption method of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method through the public certificate To provide to the customer authentication unit 1030 (for example, if the random number is generated in the call terminal further includes a random number in the form of a plain text), the customer authentication unit 1030 and the copy of the authentication certificate of the customer and / Or decrypt and compare the encrypted random numbers based on the certificate information of the customer extracted from the directory, and / or the plain text form. By intercomparison by encrypting the random number (e.g., a random number, and / or a random number generated by the call terminal generated by the client authentication unit 1030), it is desirable to authenticate the customer.

According to another embodiment of the present invention, the certificate-based customer information is stored information previously stored in the call terminal (for example, the information stored in the storage device of the call terminal in the tele-banking server 1000, and / or the Information (or system information) previously stored in the call terminal, and / or storage information (eg, an IC card (and / or IC chip) read out from an IC card (and / or IC chip) interworking with the call terminal. A serial number and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuing authority), in this case, the call terminal may The stored information is encrypted using at least one of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. Provided to the unit 1030, the customer authentication unit 1030 by decrypting the encrypted stored information based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory to compare with each other, It is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information is input information input through an input means provided in the call terminal (for example, information input through a key input device provided in the call terminal, and And / or information input through an input device other than a key input device (for example, a short-range communication device, etc.) provided in the call terminal, in which case the call terminal uses the public certificate to symmetrically input the input information. (Or secret key) encryption to at least one of the encryption method, and / or public key encryption method, and / or electronic envelope encryption method, and / or key exchange encryption method to the customer authentication unit 1030 And based on a copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory by the customer authenticator 1030. By intercomparison decrypts the input information expensive, it is desirable to authenticate the customer.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, the customer authentication information stored in the DBMS 1020 is provided to the customer by one time password. OTP generation information for generating an OTP authentication code that matches the OTP code generated through the authenticator is preferably made, wherein the customer authentication unit 1030 is linked to the call processing terminal 1010 to the call terminal By requesting a predetermined OTP code, receiving the OTP code from the call terminal, generating a predetermined OTP authentication code based on the OTP generation information, and comparing the received OTP code with the generated OTP authentication code. Characterized in that for authenticating the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method in the call terminal to provide a more advanced security function And / or is encrypted and received through at least one encryption method among key exchange encryption methods. For this purpose, the customer authentication unit 1030 further includes a function configuration for decrypting the OTP code. desirable.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 1020. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the call terminal to the telebanking server When a non-face-to-face financial transaction is requested using a password (or code), the customer authentication unit 1030 may check whether the non-face-to-face financial transaction requested from the call terminal satisfies the password (or code) using condition information. do.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, the customer authentication unit 1030 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), the non-face-to-face financial transaction password (or code) It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the customer authentication unit 1030 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while If the non-face-to-face financial transaction using the face-to-face financial transaction password (or code) has never been performed, the customer authentication unit 1030 treats the face-to-face financial transaction through the face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. When a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the customer authentication unit 1030 performs the face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid and the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 1030 performs the non-face-to-face financial Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the customer authentication unit 1030 confirms whether the non-face-to-face financial transaction amount (or code) by using the non-face-to-face financial transaction password (or code) exceeds the limit amount. It is desirable to verify that financial transactions are currently available.

If the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) use condition information, the customer authentication unit 1030 is the non-face-to-face financial transaction The non-face-to-face financial transaction through the transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 1030 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 1030 is the non-face-to-face financial transaction password (or code) Verify that the non-face-to-face financial transaction type through the non-face-to-face financial transaction (or code) is currently available by matching the financial transaction type included in the password (or code) terms and conditions. It is preferable.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the financial transaction type included in the password (or code) terms and conditions information, the customer authentication unit 1030 is the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the type of non-face-to-face financial transaction through the face-to-face financial transaction password (or code) When matching with the included financial transaction type, the customer authentication unit 1030 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 1030 is linked with the UI processing unit 1010 and the call terminal. Request the financial transaction password (or code), receive the financial transaction password (or code) from the call terminal, and receive the financial transaction password (or code) and the financial transaction password stored in the DBMS 1020. By comparing the (or code), the validity for the customer and / or the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer characterized in that the authentication.

When at least one financial transaction is requested from the call terminal, the banking processor 1035 provides a financial transaction request information input interface corresponding to the requested financial transaction to the call terminal in cooperation with the UI processor 1010. When predetermined financial transaction request information is input (or selected) from the call terminal through the financial transaction request information input interface, the predetermined financial transaction corresponding to the financial transaction request information is referred to with reference to the banking element information. The information may be generated (or extracted) and provided to the ledger processor 1040.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 1020. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the call terminal to the telebanking server When a non-face-to-face financial transaction is requested using a password (or code), the banking processor 1035 may be linked with the customer authentication unit 1030 to display the non-face-to-face financial transaction password (or code) on the financial transaction request information input interface screen. It is preferable to further provide a predetermined user interface for inputting the call to the call terminal, In response, the call terminal may further include a non-face-to-face financial transaction password (or code) in the predetermined financial transaction request information and transmit the same to the telebanking server.

In receiving the predetermined financial transaction request information from the call terminal, when the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processing unit 1035 is the customer authentication unit. It is desirable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with (1030), whereby through the non-face-to-face financial transaction password (or code) confidentiality (Confidentiality), Authentication, Integrity and Nonrepudiation are secured.

In receiving predetermined financial transaction request information from the call terminal, when following the conventional wireless banking procedure, the banking processor 1035 is linked with the customer authentication unit 1030 through the at least one customer authentication method through the financial It is preferable to authenticate the customer who requested the transaction, thereby making sure of the confidentiality and authentication of the customer who requested the financial transaction through the call terminal (or the customer who sent (or selected) the financial transaction request information). ), Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 1035 is to ensure the confidentiality, authentication, integrity and non-repudiation of the at least one financial transaction request information transmitted from the call terminal, the call terminal in the The electronic signature of the customer is attached to the financial transaction request information, and the financial transaction request information to which the electronic signature is attached is preferably encrypted and transmitted using a public key encryption method according to the public key infrastructure. In this case, the banking processor ( 1035) preferably receives the financial transaction request information from the call terminal, decrypts it with a public key decryption method according to the public key infrastructure, and confirms the electronic signature, thereby ensuring confidentiality of the financial transaction request information. , Authentication, integrity and nonrepudiation are ensured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 1035 to secure the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the call terminal for at least one or more financial transactions, Preferably, a call terminal encrypts and transmits the financial transaction request information in an electronic envelope method. In this case, the banking processor 1035 preferably receives the financial transaction request information from the call terminal and decrypts the financial transaction request information in an electronic envelope method. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

The ledger processing unit 1040 may be linked with the financial system 1060 through a predetermined interface means 1055, and predetermined financial transaction information may be generated (or extracted) by the banking processing unit 1035. In this case, at least one ledger information to be extracted from the ledger on the financial system 1060 in response to the financial transaction information is identified, and the identified from the ledger on the financial system 1060 through the interface means 1055. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 1060 in response to the financial transaction information, and through the interface means 1055 the financial system ( The generated (or extracted) ledger record information is recorded in the ledger on the screen 1060).

For example, the financial transaction requested from the call terminal is an account inquiry transaction for the last month, and the banking processor 1035 generates financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry. Is extracted), the ledger processing unit 1040 is linked to the account ledger (and / or the customer ledger) on the financial system 1060 through the interface means 1055 based on the financial transaction information for the account inquiry The transaction history of the last month of the transaction history of the account is extracted from the transaction history information associated with the account ledger and provided to the banking processor 1035.

11A, 11B, and 11C illustrate a non-face-to-face financial transaction process through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, FIGS. 11A, 11B, and 11C illustrate at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or Or a home banking system, in the Telle banking system shown in FIG. 11, wherein the call terminal is connected to a voice communication network (eg, a general telephone switching network (PSTN), and / or a mobile communication network, and / or a VOIP network). When requesting a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code), the conditions for using the non-face-to-face financial transaction password (or code) and password (or code) registered through the information registration system shown in FIG. The present invention relates to an implementation method of performing a tale banking procedure using a non-face-to-face financial transaction password (or code) according to the present invention. Those of ordinary skill in the art may refer to and / or modify the drawings 11a, 11b and 11c to obtain a non-face-to-face financial transaction password (or code) implemented through the tale banking system shown in FIG. Various implementation methods for the non-face-to-face financial transaction process can be inferred, but the present invention includes all the implementation methods inferred, and is not limited to the implementation methods shown in FIGS. 11A, 11B, and 11C.

11A, 11B, and 11C illustrate the information registration system shown in FIG. 1 in the call terminal when the call terminal is connected to the tally banking server through a predetermined voice call function and a DTMF signal provided in the call terminal. Although the non-face-to-face financial transaction password (or code) registered through the password (or code) using the condition information is shown an implementation method for processing the face-to-face financial transaction based on the tole banking system, but the present invention Those skilled in the art may refer to and / or modify a telephony-based financial transaction channel connection method using a voice call function and a DTMF signal shown in FIGS. 11A, 11B, and 11C to the call terminal. An image registered through the information registration system shown in FIG. 1 in the call terminal based on a predetermined tale banking program to be loaded. Although the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be inferred, the present invention may infer an implementation method of processing the non-face-to-face financial transaction based on the tole banking system. Includes provided tale banking based financial transactions based on banking programs, whereby the invention is not limited.

In addition, those skilled in the art to which the present invention pertains, Internet banking in addition to the tellale banking system by referring to and / or modifying the telltale banking-based financial transaction method shown in Figures 11a, 11b and 11c. It would be possible to infer a non-face-to-face financial transaction method through another banking system, such as a system and / or a wireless banking system and / or a TV banking system and / or a home banking system, but the present invention is directed to the internet banking system and / or wireless banking. It includes all types of non-face-to-face channel-based financial transactions, including systems and / or TV banking systems and / or home banking systems and / or non-face-to-face channel banking systems proposed in the future. It is by no means limited to the case of the telle banking shown in Figs. 11B and 11C.

In the following FIGS. 11A, 11B and 11C, the call terminal shown in FIG. 10 is referred to as "terminal" for convenience, and the tale banking server is referred to as "server" for convenience.

11A, 11B, and 11C, the terminal includes at least one switch provided in a predetermined voice call network (eg, a general switched telephone network (PSTN), and / or a mobile communication network, and / or a VoIP network, etc.). A predetermined call channel for a non-face-to-face financial transaction based on the banking is connected to the server by performing a predetermined call processing procedure (1100).

When the call channel is connected as described above, the server is the non-face-to-face financial transactions in the non-face-to-face financial transaction password (or code) in accordance with the present invention and non-face-to-face financial transactions according to conventional tale banking based face-to-face financial transactions Generates (or extracts) a voicement (eg, a guidement and / or a transaction), including a user interface for selecting one of the non-face-to-face financial transactions, and provides the same to the terminal (1110). Thus, the terminal uses a non-face-to-face financial transaction password (or code) according to the present invention through a user interface included in the voice announcement (eg, announcement and / or transaction, etc.) and conventional tale banking. A non-face-to-face financial transaction method based on non-face-to-face financial transactions is selected (1115).

If the terminal does not select the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) through the user interface, the non-face-to-face financial transaction method according to conventional tale banking based non-face-to-face financial transaction is selected In operation 1120, the terminal performs a conventional tale banking based non-face-to-face financial transaction procedure shown in FIG. 12.

On the other hand, if the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention is selected through the user interface (1120), the terminal through the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (1125), and the server uses the password (or code) registered through the information registration system shown in FIG. Or (code) checks the validity of the number of times of non-face-to-face financial transactions (1130).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the number of times of use of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is not authenticated (1135), the server may include voice announcements (eg, announcements, including predetermined financial transaction error information). And / or a transaction, etc.) is generated and transmitted to the terminal (1140), and the tale banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the number of times of non-face-to-face financial transactions using the non-face-to-face financial transaction password (or code) is authenticated (1135), the server selects a non-face-to-face financial transaction type through the face-to-face financial transaction password (or code). A voice announcement (eg, announcement and / or transaction), including a predetermined financial transaction type selection interface, is generated and provided to the terminal (1145). In response, the terminal selects the financial transaction type selection interface. Input (or select) financial transaction type selection information through the non-face-to-face financial transaction password (or code) through 1150.

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (1155), the terminal transmits the financial transaction type selection information to the server (1160), and the server In operation 1165, the validity of the non-face-to-face financial transaction type through the password (or code) using the password (or code) registered through the information registration system shown in FIG. 1 is verified.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to check whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). Or a non-face-to-face financial transaction through code) as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If matched with the server, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (1170), the server may include voice announcements (eg, announcements, and / Or a transaction, etc.) is generated and transmitted to the terminal (1172), and does not perform the tale banking based non-face-to-face financial transaction procedure.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (1170), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). Generate a voicement (eg, announcement and / or transaction) including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) at the terminal (Or extract) 1174, and transmits and outputs a voicement including the financial transaction interface (eg, announcement and / or transaction) to the terminal (1176).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined tole banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferred to include a user interface for entering (or selecting) a non-face-to-face financial transaction password (or code) for validating the transaction.

In addition, it is preferable that the voicement (eg, announcement and / or transaction) is transmitted and / or outputted at least once according to the tole banking financial transaction procedure, thereby limiting the present invention. No.

Thereafter, the terminal transmits predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and predetermined non-face-to-face financial transaction password (or code) for authenticating the non-face-to-face financial transaction through the financial transaction interface. (1178).

If the terminal enters (or selects) a non-face-to-face financial transaction password (or code) through the financial transaction interface through the financial transaction interface (1180), the terminal receives the input (or selected) financial transaction request information. A non-face-to-face financial transaction password (or code) is transmitted to the server (1182), and the server performs the non-face-to-face financial transaction through a password (or code) use condition registered through the information registration system shown in FIG. The validity of the non-face-to-face financial transaction amount through the password (or code) is verified (1184).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). The server checks whether the non-face-to-face financial transaction password (or code) exceeds the limit by checking whether the non-face-to-face financial transaction password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). ), The non-face-to-face financial transaction through) is treated as invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) does not exceed the limit included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated (1186), the server may include predetermined financial transaction error information. A voice memo (eg, announcement and / or transaction) is generated and transmitted to the terminal (1188), and the tale banking based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) use condition (1186), the server receives the received non-face-to-face financial transaction password (or Code) (1190).

According to an embodiment of the present invention, the validity verification process for the non-face-to-face financial transaction password (or code) is provided on the non-face-to-face financial transaction password (or code) received from the terminal and on the non-face-to-face banking system. It is preferable to include the process of comparing the financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (1192), the server generates a voicement (eg, announcement and / or transaction, etc.) containing the predetermined financial transaction error information. The terminal transmits the terminal to the terminal (1188) and does not perform the tale banking-based non-face-to-face financial transaction procedure.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (1192), the server performs a financial transaction procedure corresponding to the financial transaction request information (1194).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the telle banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If a financial transaction corresponding to the financial transaction request information fails (e.g., an error occurs during the financial transaction procedure) (1196), the server may include a voice message containing predetermined financial transaction error information (e.g., Information and / or transaction), and the like to be generated and transmitted to the terminal (1188), and does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (1196), the server generates a voice message (eg, announcement and / or transaction) including the predetermined financial transaction history information to the terminal By sending (1198), the financial transaction requested from the terminal is completed.

12A and 12B illustrate a conventional non-face-to-face financial transaction method according to another exemplary embodiment of the present invention.

More specifically, FIGS. 12A and 12B illustrate at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or home banking). In the telebanking system shown in FIG. 10, the call terminal performs a predetermined call processing procedure through a predetermined voice communication network to connect a call channel with the telebanking server, and then a conventional telebanking procedure. If a voice call and DTMF-based non-face-to-face financial transaction is requested to the telebanking server through a telebanking based communication channel, the telebanking server processes the requested financial transaction, and the result is the telebanking based call channel. As an implementation method for providing to the call terminal through the present invention, the general knowledge in the technical field to which the present invention belongs In this case, various financial transaction methods using a telebanking based communication channel between the call terminal and the telebanking server may be inferred by referring to and / or modifying the drawings 12a and 12b. It includes an implementation method and is not limited to the implementation method shown in Figs. 12A and 12B.

12A and 12B are provided to the telebanking server through a predetermined voice call network (eg, a general telephone switching network (PSTN), and / or a mobile communication network, and / or a VoIP network) provided in the call terminal. When the tele-banking-based communication channel is connected to the communication channel, the method for processing the financial transaction requested from the communication terminal is illustrated. However, if the person of ordinary skill in the art to which the present invention belongs belongs to this figure 12a and 12b. Reference and / or modification of a telebanking method using a voice call function and a DTMF signal processing function as shown in FIG. 2 to establish a predetermined data communication function between the call terminal and the telebanking server through an intelligent call network. Although it may be possible to infer a telebanking method for processing a non-face-to-face financial transaction, the present invention is based on the data communication function. Which it includes a telebanking method, to which the present invention is not limited.

Also, those skilled in the art may refer to and / or modify the telebanking based financial transaction method shown in FIGS. 12A and 12B, in addition to the telebanking system, and / or the Internet banking system. Alternatively, another banking system such as a wireless banking system and / or a TV banking system may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention provides the telebanking system and / or the wireless banking system and And / or a non-face-to-face channel based financial transaction method of any kind, including a TV banking system and / or a non-face-to-face channel banking system proposed in the future, wherein the technical configuration of the present invention is illustrated in FIGS. 12A and 12B. It is by no means limited to.

12A and 12B, the call terminal is referred to as " terminal " for convenience, and the telebanking server is referred to as " server " for convenience.

12A and 12B, when the non-face-to-face financial transaction is performed according to a conventional telebanking procedure in the process illustrated in FIG. 11, the terminal performs a telebanking based customer authentication procedure in association with the server ( 1200).

Those skilled in the art to which the present invention pertains, the terminal is at least one provided in the voice call network (e.g., general switched telephone network (PSTN), and / or mobile communication network, and / or VoIP network, etc.) By performing a predetermined call processing procedure through the above-described exchange, the technical features that the predetermined communication channel for the non-face-to-face financial transactions based on the server and the telebanking-based customer authentication through at least one customer authentication information Since you will be familiar with the technical features of the procedure, a detailed description thereof will be omitted for convenience.

If the telebanking-based customer authentication is confirmed (1205), the terminal requests a telebanking-based financial transaction to the server through the telebanking-based call channel (1210), the server is the requested non-face-to-face financial transaction Generate (or extract) a voicement (eg, announcement, and / or transaction, etc.) including a predetermined financial transaction interface (1220), and generate (or extract) through the telebanking-based currency channel ) And transmits the voice announcement (for example, announcement and / or transaction) to the terminal (1225).

According to an embodiment of the present invention, the financial transaction interface may include predetermined telebanking-based financial transaction request information for processing a predetermined telebanking-based financial transaction based on the selected (or input) account information, and / or the A predetermined password (e.g. account password, etc.) and / or security code (e.g., a security code printed on the security card issued to the customer during the telebanking application process) to verify the validity of the telebanking customer requesting a financial transaction. And / or enter one time password (OTP) (e.g., a one-time password generated by an OTP authenticator (or OTP certification program) provided to a customer by a financial institution during the telebanking application process (or after a telebanking application) It is preferable to further include a user interface).

In addition, the process of transmitting and / or outputting the voicement (eg, announcement and / or transaction) is preferably performed at least once according to the telebanking financial transaction procedure, whereby the present invention is not limited thereto. .

Thereafter, the terminal inputs (or selects) the telebanking-based financial transaction request information including at least one for each telebanking-based financial transaction through the financial transaction interface (1230).

If the terminal receives (or selects) the telebanking based financial transaction request information through the financial transaction interface (1235), the terminal receives the input (or selected) telebanking based financial through the financial transaction channel. The transaction request information is transmitted to the server (1240).

According to the exemplary embodiment of the present invention, the transmitting (or selecting) the telebanking-based financial transaction request information through the financial transaction channel to the server may include inputting (or selecting) the telebanking through the financial transaction interface. It comprises the electronic financial signature and / or encryption through the security module provided in the terminal based on the financial transaction request information transmitted to the server.

Thereafter, the server checks and validates the validity of the telebanking-based financial transaction request information by receiving and reading the telebanking-based financial transaction request information through the financial transaction channel (1245).

According to an embodiment of the present invention, receiving and reading the telebanking-based financial transaction request information through the financial transaction channel to confirm the validity may decode the telebanking-based financial transaction request information received from the terminal and / or Or checking the electronic signature attached to the telebanking-based financial transaction request information.

In addition, the validity check of the telebanking-based financial transaction request information, preferably further comprises authenticating the password and / or security code and / or OTP included in the telebanking-based financial transaction request information.

If the validity of the telebanking-based financial transaction request information is not authenticated (1250), the server generates a voicement (eg, a guidement and / or a transaction) including predetermined financial transaction error information. It transmits to the terminal (1255), and does not perform a financial transaction procedure corresponding to the telebanking-based financial transaction request information.

On the other hand, if the validity of the telebanking-based financial transaction request information is authenticated (1250), the server performs a financial transaction procedure corresponding to the telebanking-based financial transaction request information (1260).

According to an embodiment of the present invention, a financial transaction procedure corresponding to the telebanking-based financial transaction request information may include accessing the ledger of the telebanking customer provided on the financial system from the server to the telebanking-based financial transaction request information. It is preferable to include the addition / change / update procedure for the ledger information (or at least one or more additional information associated with the ledger information).

If a financial transaction corresponding to the telebanking-based financial transaction request information fails (eg, an error occurs during the financial transaction procedure) (1265), the server may include a voice message including predetermined financial transaction error information. (Eg, an announcement and / or a transaction) is generated and transmitted to the terminal (1255), and the financial transaction procedure corresponding to the telebanking-based financial transaction request information is not performed.

On the other hand, if a financial transaction corresponding to the telebanking-based financial transaction request information is successful (1265), the server generates a voicement (eg, a guidement and / or a transaction) including predetermined financial transaction history information. By transmitting to the terminal (1270), the financial transaction requested from the terminal is completed.

FIG. 13 is a diagram illustrating a non-face-to-face financial transaction system configuration for processing non-face-to-face financial transactions through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, FIG. 13 illustrates at least one non-face to face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In the WAP-based wireless banking system operating based on a WAP / ME (Wireless Application Protocol / Mobile Explorer) based wireless communication network (for example, a CDMA-based mobile communication network), a predetermined registration is performed through the information registration system shown in FIG. As a method for implementing a non-face-to-face financial transaction system for processing non-face-to-face financial transactions without at least one authorized certificate and / or security code in the Internet banking system based on a non-face-to-face financial transaction password (or code) of the present invention, Those skilled in the art to which the invention pertains may refer to, and / or modify, this W13 based on the WAP. In addition to the pre-banking system, other non-face-to-face financial transaction systems (e.g., a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system) are provided through the information registration system shown in FIG. Various implementation methods may be inferred to process non-face-to-face financial transactions without at least one or more authorized certificates and / or security codes based on a registered non-face-to-face financial transaction password (or code). It includes all the implementation methods, and is not limited to the implementation method shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). WAP-based wireless banking system that operates based on a WAP / ME-based wireless communication network (for example, CDMA-based mobile communication network), at least one or more wireless terminals 140 having a predetermined swap browser, and at least one or more of the wireless It comprises a wireless banking server 1300 for providing a WAP-based wireless banking service to the terminal 140, the wireless banking server 1300 provides the WAP-based wireless banking service through a predetermined interface means 1355 It is associated with a financial system 1360 that handles the financial business required to do so.

Those skilled in the art to which the present invention pertains can easily guess components omitted for convenience because they do not include the core technical details of the present invention in the WAP-based wireless banking system shown in FIG. However, the present invention is not limited to the components omitted.

That is, FIG. 13 illustrates a method of implementing a WAP-based wireless banking system for processing non-face-to-face financial transactions between the wireless terminal 140 and a wireless banking server based on a predetermined browser program provided in the wireless terminal 140. Although shown to those skilled in the art to which the present invention pertains, the wireless terminal (WAP-based wireless banking-based financial transaction channel connection method using the browser program shown in FIG. A WAP-based wireless banking system for processing non-face-to-face financial transactions between the wireless terminal 140 and the wireless banking server based on a predetermined internet banking program installed in the 140, and / or the wireless terminal 140 Infer the configuration of WAP-based wireless banking system to process non-face-to-face financial transactions using predetermined financial IC chip mounted or detached, / Or In addition to the WAP / ME based wireless banking system configuration of the wireless banking system using the IEEE 802.16x-based portable Internet and / or IEEE 802.11x-based wireless LAN using MIP (Mobile IP), the present invention can be inferred WAP-based wireless banking system provided based on the WAP-based wireless banking program, by which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the WAP-based wireless banking system by referring to and / or modifying the configuration of the WAP-based wireless banking system shown in Figure 13, non-face-to-face according to the present invention Other banking systems, such as an internet banking system and / or a telebanking system and / or a TV banking system and / or a home banking system for channel-based financial transactions, may be inferred, but the present invention is directed to the internet banking system and / or tele The banking system and / or TV banking system and / or home banking system and / or non-face-to-channel banking system of all types, including future proposed non-face-to-channel banking system, including the technical configuration of the present invention is shown in Figure 13 It is by no means limited to the illustrated WAP-based wireless banking case.

Hereinafter, in FIG. 13, the WAP-based wireless banking is referred to as "wireless banking" for convenience.

The wireless terminal 140 includes at least one swap browser for accessing the wireless banking server 1300 and receiving a browsing-based wireless web service based on a WAP / ME-based wireless communication function and the wireless communication function. One Personal Communication System (PCS) and / or Global System for Mobile communications (GSM) terminal and / or Personal Digital Cellular (PDC) and / or Personal Handyphone System (PHS) terminal and / or And a wireless terminal 140 including at least one or more of a personal digital assistant (PDA) and / or a smart phone, and including the WAP / ME based Internet. The wireless banking server 1300 and a communication channel for WAP-based wireless banking are connected through a wireless communication network.

The financial system 1360 is a computer system provided in a predetermined financial institution to open at least one financial account to at least one or more customers and to process a financial transaction based on the financial account. An accounting system 1362 for processing window services such as credit or receiving or trust or foreign exchange, an information system 1363 for processing of headquarters operations, branch office information support, and customer information management; Provides a variety of electronic financial services (e.g., wireless banking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), line transfer, call center, financial settlement, etc. by connecting to external computer networks including companies, retailers and card companies An interface corresponding to an external system 1361, and a middleware platform that provides interfacing between components in the financial system. At least for storing and managing the eS module 1365 and predetermined information (e.g., ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. A database management system (DBMS) 1364 including one or more databases 310, and includes the intention of the person skilled in the art and / or the type of each financial institution (e.g., commercial banks, savings banks, trust banks) Depending on the purpose and characteristics of the system, it is possible to further include at least one or more components such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), and the present invention belongs to Those skilled in the art will clearly understand the technical details of the financial system 1360, and thus the detailed description thereof will be omitted for convenience. , To which the present invention is not limited.

According to an embodiment of the present invention, the wireless banking server 1300 is interlocked with the financial system 1360 through the external system 1361, and for this purpose, the external system 1361 has a predetermined interface means 1355. It is preferable to include a component for interworking with the wireless banking server 1300 through.

The wireless banking server 1300 may include a database 310 for storing wireless operation data including at least one wireless page source and / or digital content for providing a predetermined web service to the at least one wireless terminal 140, And / or a DBMS 1320 including a database 310 for storing wireless banking information required to provide a predetermined wireless banking service in conjunction with the financial system 1360, or the DBMS in accordance with an implementation method. 1320 is interoperable with the data server provided, thereby providing a predetermined wireless banking service to at least one or more of the wireless terminal 140.

According to an embodiment of the present invention, the wireless banking information may be configured to authenticate a customer corresponding to the wireless terminal 140 when at least one or more wireless terminals 140 access and log in to the wireless banking server 1300, and / Or when the customer authenticates the financial transaction customer during at least one financial transaction through the wireless banking server 1300, and / or when the customer subscribes to the wireless banking server 1300 for at least one financial product. Customer authentication information for authenticating the customer to subscribe to, and when the financial transaction request from the customer via the wireless terminal 140, in conjunction with the financial system 1360 to process the financial transaction corresponding to the financial transaction request It is preferable to include banking element information for, at least one or more information required for wireless banking according to the intention of the skilled person Although it may be further included, in Figure 13 it is omitted for convenience.

Referring to FIG. 13 according to an embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) use condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information may be included in the customer authentication information and stored in the DBMS 1320.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) use condition information may be provided in a separate database 310 in addition to the customer authentication information. The invention is not limited.

For example, the non-face-to-face financial transaction password (or code) registered through the information registration system shown in FIG. 1 is provided in the DBMS 1324 on the financial system, not the DBMS 1320 provided on the wireless banking system. The present invention is not limited thereto.

Referring to FIG. 13, the wireless banking server 1300 may include a wireless interface unit 1305 for connecting and managing a wireless communication based communication channel for providing a predetermined wireless banking service to at least one or more wireless terminals 140. And a wireless page manager 1315 for operating a wireless page to be provided to at least one or more of the wireless terminals 140 in cooperation with the wireless interface unit 1305 and the DBMS 1320, and the wireless page manager 1315. In conjunction with the UI processing unit 1310 for generating a user interface (UI) screen for providing a predetermined wireless banking service to at least one wireless terminal 140 in conjunction with the UI processing unit 1310 Extract predetermined content for providing the wireless banking service from the DBMS 1320 or receive predetermined content to be stored in the DBMS 1320 from the wireless terminal 140. And a content management unit 1325, and a communication channel and a user for processing wireless banking based on wireless communication between the wireless terminal 140 and the wireless banking server 1300 by the functional configuration. The interface is implemented.

In addition, the wireless banking server 1300 authenticates the customer with at least one wireless terminal 140 in association with the wireless page operation unit 1315 through the UI processor 1310 based on the customer authentication information of the wireless banking information. It is characterized in that it comprises a customer authentication unit 1330 to provide an interface screen, or at least one or more customer authentication information based on the interface screen.

In addition, the wireless banking server 1300 interoperates with the wireless page operation unit 1315 through a UI processor 1310 based on the banking element information of the wireless banking information to at least one or more wireless terminals 140. It is characterized in that it comprises a banking processing unit 1335 to provide a related interface screen, or at least one or more financial transaction-related information based on the interface screen.

In addition, the wireless banking server 1300 includes a ledger processor 1340 that performs a ledger processing procedure corresponding to the financial transaction requested by the customer in cooperation with the financial system 1360 through a predetermined interface means 1355. The ledger processing unit 1340 may be connected to the external system 1361 of the financial system 1360 through the interface means 1355.

The customer authentication information stored in the DBMS 1320 may include ID / PW information and personal information (eg, name, resident registration number, address, contact information, etc.) of a customer accessing the wireless banking server 1300 through the wireless terminal 140. It is preferable to include a member information including at least one, wherein the customer authentication unit 1330 is linked to the UI processing unit 1310 to the ID / PW information of the customer to the wireless terminal 140 Request, receive the ID / PW information from the wireless terminal 140, and compare the received ID / PW information with ID / PW information included in the member information to authenticate the customer. .

According to an embodiment of the present invention, the ID / PW information may be provided to the wireless banking server 1300 according to a conventional ID / PW transmission / reception procedure, but the ID / PW information may be provided to provide a more advanced security function. The wireless terminal 140 is encrypted through at least one encryption method of a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method, and / or key exchange encryption method Preferably, the customer authentication unit 1330 further includes a function configuration for decrypting the ID / PW information.

In addition, the customer authentication information stored in the DBMS 1320 may include certification authority information (eg, KFTC) and authentication server information, and / or the issuer who issued a predetermined certificate to a customer connected through the wireless terminal 140. Accredited certificate registrar information (e.g., when the accredited certificate is registered through the process, the process information, when the accredited certificate is registered through the process, etc.), and / or certificate information issued to the customer by the certification body. It is preferable to further comprise, wherein the customer authentication unit 1330 is a certificate server of the certification authority requests a certificate-based customer authentication through the certificate registered in the registration authority, the customer from the certificate server By receiving an authentication result, the customer is characterized in that the authentication.

According to the embodiment of the present invention, the customer authentication unit 1330 provides the communication session information and the certificate information connected to the wireless terminal 140 to the authentication server of the certification authority, the authentication server is the communication session information After performing the customer authentication procedure corresponding to the certificate information to the wireless terminal 140 based on the, it is preferable to provide the result to the customer authentication unit 1330.

In addition, the customer authentication information stored in the DBMS 1320 is made by including a copy of the authentication certificate of the customer accessing the wireless banking server 1300 through the wireless terminal 140, and / or to the customer It is preferable to include the directory connection information of the certification authority that issued the certificate, the customer certification unit 1330 is connected to the authentication server of the certification authority that issued a predetermined certificate to the customer the wireless By requesting the certificate-based customer information to the terminal 140, by receiving the certificate-based customer information from the wireless terminal 140, by authenticating the certificate-based customer information through the copy of the certificate and / or the directory of the certification authority Characterized in that for authenticating the customer.

According to an exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 1330 or a predetermined random number generated by the wireless terminal 140. The wireless terminal 140 uses at least one of a symmetric key (or secret key) encryption method, a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method for the random number through the certificate. Encrypted through the above encryption method provided to the customer authentication unit 1330 (for example, if the random number is generated in the wireless terminal 140 further includes a random number in the form of a plain text), the customer authentication unit 1330 Decrypts the encrypted random number based on the copy of the customer's accredited certificate and / or the certificate information of the customer extracted from the directory, compares each other, and / or the It is preferable to authenticate the customer by encrypting and comparing the random number in the plain text form (for example, the random number generated by the customer authentication unit 1330 and / or the random number generated by the wireless terminal 140).

According to another exemplary embodiment of the present invention, the certificate-based customer information is stored in the storage information of the wireless terminal 140 previously stored in the wireless terminal 140 (for example, the wireless banking server 1300). One information, and / or information (or system information) previously stored in the wireless terminal 140, and / or an IC card (and / or IC chip) interoperating with the wireless terminal 140. Stored information (e.g., IC card (and / or IC chip) serial number, and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuer) In this case, the wireless terminal 140 converts the stored information into a symmetric key (or secret key) encryption scheme, and / or public key encryption scheme, and / or electronic envelope encryption scheme, and / or key through the public certificate. Passwords through at least one of the exchange encryption methods The customer authentication unit 1330, and decrypts the encrypted stored information based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory by the customer authentication unit 1330. By comparison, it is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information includes input information (for example, a key input device provided in the wireless terminal 140) input through an input means provided in the wireless terminal 140. Information input through an input device (eg, a short-range communication device) other than a key input device provided in the wireless terminal 140, and in this case, the wireless terminal 140. The at least one encryption method of symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method, and / or key exchange encryption method is used for the input information. Encrypted through the provided to the customer authentication unit 1330, the customer authentication unit 1330 is extracted from the copy of the customer's official certificate and / or the directory of the customer's authorized certificate Subject to decrypt the encrypted information based on the input by mutual comparison, it is desirable to authenticate the customer.

In addition, the customer authentication information stored in the DBMS 1320 may be OTP generation information for generating an OTP authentication code matching the OTP code generated through the OTP (One Time Password) authenticator provided to the customer, When the customer authentication unit 1330 interoperates with the UI processing unit 1310, requests a predetermined OTP code from the wireless terminal 140, receives the OTP code from the wireless terminal 140, and generates the OTP. Generate a predetermined OTP authentication code based on the information, and by comparing the received OTP code and the generated OTP authentication code, characterized in that for authenticating the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic in the wireless terminal 140 to provide a more advanced security function It is preferable that the data is encrypted and received through at least one or more of an envelope encryption method and / or a key exchange encryption method. For this purpose, the customer authentication unit 1330 further includes a function configuration for decrypting the OTP code. It is preferable to make.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 1320. The non-face-to-face financial transaction password (or code) and password (or code) usage condition information are included, and the non-face-to-face non-financial certificate (or code) without at least one or more authorized certificates and / or security codes from the wireless terminal 140 to the wireless banking server. When a non-face-to-face financial transaction is requested through a face-to-face financial transaction password (or code), the customer authentication unit 1330 requests that the face-to-face financial transaction requested from the wireless terminal 140 satisfies the password (or code) using condition information. It is characterized by checking that.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. In this case, the customer authentication unit 1330 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code). It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction through (or code) is performed more than once, the customer authentication unit 1330 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while If the non-face-to-face financial transaction using the face-to-face financial transaction password (or code) has never been performed, the customer authentication unit 1330 processes the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. When the non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the customer authentication unit 1330 performs the face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid and the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 1330 performs the face-to-face finance. Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the customer authentication unit 1330 determines whether the non-face-to-face financial transaction amount (or code) through the non-face-to-face financial transaction password (or code) exceeds the limit amount. It is desirable to verify that face-to-face financial transactions are currently available.

If the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the customer authentication unit 1330 is the non-face-to-face financial transaction The non-face-to-face financial transaction through the transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 1330 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 1330 is the non-face-to-face financial transaction password (or code) Check if the non-face-to-face financial transaction type through) is matched with the financial transaction type included in the password (or code) terms and conditions. It is desirable to.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the customer authentication unit 1330 determines The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the type of non-face-to-face financial transaction through the face-to-face financial transaction password (or code) When matching with the included financial transaction type, the customer authentication unit 1330 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 1330 is linked with the UI processor 1310 to the wireless terminal. Request the financial transaction password (or code) to the 140, receive the financial transaction password (or code) from the wireless terminal 140, and receive the received financial transaction password (or code) and the DBMS 1320. By comparing the financial transaction password (or code) stored in the), and the validity of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer, characterized in that do.

When at least one financial transaction is requested from the wireless terminal 140, the banking processor 1335 requests a financial transaction corresponding to the requested financial transaction to the wireless terminal 140 in association with the UI processor 1310. Providing an information input interface screen and receiving (or selecting) predetermined financial transaction request information from the wireless terminal 140 through the financial transaction request information input interface screen, referring to the banking element information; It is characterized in that the predetermined financial transaction information corresponding to the financial transaction request information is generated (or extracted) and provided to the ledger processing unit 1340.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 1 and stored in the customer authentication information stored in the DBMS 1320. The non-face-to-face financial transaction password (or code) and password (or code) usage condition information are included, and the non-face-to-face non-financial certificate (or code) without at least one or more authorized certificates and / or security codes from the wireless terminal 140 to the wireless banking server. When a non-face-to-face financial transaction is requested through a face-to-face financial transaction password (or code), the banking processor 1335 is linked with the customer authentication unit 1330 to display the non-face-to-face financial transaction password ( Or a predetermined user interface for inputting a code) to the wireless terminal 140. In response, the wireless terminal 140 preferably further includes a non-face-to-face financial transaction password (or code) in the prescribed financial transaction request information and transmits it to the wireless banking server.

In receiving the predetermined financial transaction request information from the wireless terminal 140, when the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processor 1335 It is preferable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with the customer authentication unit 1330, whereby through the non-face-to-face financial transaction password (or code) Confidentiality, Authentication, Integrity and Nonrepudiation are secured.

In receiving predetermined financial transaction request information from the wireless terminal 140, when following the conventional wireless banking procedure, the banking processing unit 1335 is connected to the customer authentication unit 1330 to perform at least one customer authentication scheme. It is preferable to authenticate the customer who requested the financial transaction through the service, thereby providing confidentiality (for the customer who requested the financial transaction through the wireless terminal 140 (or a customer who inputs (or selects) the financial transaction request information and transmits the information). Confidentiality, Authentication, Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 1335 is configured to secure the confidentiality, authentication, integrity and non-repudiation of at least one financial transaction request information transmitted from the wireless terminal 140, Preferably, the terminal 140 attaches the electronic signature of the customer to the financial transaction request information and encrypts and transmits the financial transaction request information to which the electronic signature is attached using a public key encryption method according to a public key infrastructure. In this case, the banking processor 1335 receives the financial transaction request information from the wireless terminal 140, decrypts the public key decryption method according to the public key infrastructure, and confirms the electronic signature. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

In addition, when following the conventional wireless banking procedure, the banking processing unit 1335 may ensure confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the wireless terminal 140 for at least one or more financial transactions. To this end, it is preferable that the wireless terminal 140 encrypts and transmits the financial transaction request information in an electronic envelope method. In this case, a banking processor 1335 receives the financial transaction request information from the wireless terminal 140. It is preferable to decrypt by the electronic envelope method, thereby ensuring the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information.

The ledger processing unit 1340 may be linked with the financial system 1360 through a predetermined interface unit 1355, and predetermined financial transaction information may be generated (or extracted) by the banking processing unit 1335. In this case, at least one ledger information to be extracted from the ledger on the financial system 1360 corresponding to the financial transaction information is identified, and the identified from the ledger on the financial system 1360 through the interface means 1355. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 1360 in response to the financial transaction information, and through the interface means 1355 And recording the generated (or extracted) ledger record information in the ledger on 1360.

For example, the financial transaction requested from the wireless terminal 140 is an account inquiry transaction for the last one month, and the financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry is performed by the banking processor 1335. When generated (or extracted), the ledger processing unit 1340 is linked to the account ledger (and the ledger) on the financial system 1360 through the interface means 1355 based on the financial transaction information for the account inquiry. And / or transaction history information associated with the account ledger) from the transaction history of the account to the banking processor 1335.

14A, 14B, and 14C illustrate a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, FIGS. 14A, 14B, and 14C illustrate at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or In the wireless banking system illustrated in FIG. 14, a home banking system, wherein the wireless terminal 140 is a wireless communication network (eg, a CDMA-based mobile communication network, an IEEE 802.16X-based portable Internet, or an IEEE 802.11X-based wireless LAN). If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is requested, the non-face-to-face financial transaction password (or code) and password (or registered) through the information registration system shown in FIG. Code) using the conditional information to perform a wireless banking procedure through a non-face-to-face financial transaction password (or code) in accordance with the present invention As those skilled in the art to which the present invention pertains, the non-face-to-face financial transactions performed through the wireless banking system shown in FIG. 14 by referring to and / or modifying the drawings 14a, 14b, and 14c. Although various implementation methods for the non-face-to-face financial transaction process through a password (or code) may be inferred, the present invention includes all the implementation methods inferred from the above, and is illustrated in FIGS. 14A, 14B, and 14C. It is not limited to the method.

That is, FIGS. 14A, 14B, and 14C register the information shown in FIG. 1 in the wireless terminal 140 when the wireless banking server is connected to the wireless banking server through a predetermined browser program included in the wireless terminal 140. Although the non-face-to-face financial transaction password (or code) and password (or code) using condition information registered through the system is shown an implementation method of processing the non-face-to-face financial transaction based on the wireless banking system, but the present invention Those skilled in the art may refer to and / or modify a wireless banking-based financial transaction channel connection method using the browser program shown in FIGS. 14A, 14B, and 14C, and then change the wireless terminal 140. An image registered through the information registration system shown in FIG. 1 in the wireless terminal 140 based on a predetermined wireless banking program mounted in the Although the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be inferred, the present invention may infer an implementation method of processing the non-face-to-face financial transaction based on the wireless banking system. Included is a wireless banking based financial transaction provided based on a banking program, whereby the present invention is not limited.

Also, those skilled in the art to which the present invention pertains may refer to and / or modify the wireless banking based financial transaction method shown in FIGS. 14A, 14B, and 14C, and, in addition to the wireless banking system, provide Internet banking. It would be possible to infer a non-face-to-face financial transaction method through another banking system, such as a system and / or a telebanking system and / or a TV banking system and / or a home banking system, but the present invention is directed to the internet banking system and / or telebanking. It includes all types of non-face-to-face channel based financial transactions, including systems and / or TV banking systems and / or home banking systems and / or non-face-to-face channel banking systems proposed in the future. It is by no means limited to the case of the wireless banking shown in FIGS. 14B and 14C.

In the following FIGS. 14A, 14B and 14C, the wireless terminal 140 shown in FIG. 13 is referred to as a "terminal" for convenience, and the wireless banking server is referred to as a "server" for convenience.

Referring to FIGS. 14A, 14B, and 14C, the mobile terminal executes a predetermined browser program (eg, a CDMA-based mobile communication network, an IEEE 802.16x-based mobile Internet, or an IEEE 802.11x-based wireless LAN, etc.). When connected to the server through (1400), the server connects the communication channel between the terminal and the server through the browser (1405), where the communication channel is provided in the wireless terminal 140 in the server Generates (or extracts) a predetermined wireless page at the request of a browser program and transmits the predetermined wireless page to the wireless terminal 140. The browser program included in the wireless terminal 140 provides a predetermined user interface included in the wireless page. This means that a predetermined communication session is allocated to receive at least one or more information (or data) inputted (or selected) based on this.

According to another exemplary embodiment of the present invention, when the wireless terminal 140 is provided with a predetermined wireless banking program, the server may be configured with at least one wireless banking program based on a predetermined communication protocol defined in the wireless banking program. A communication channel for transmitting and receiving the above information (or data) can be allocated.

When the communication channel is connected as described above, the server is the non-face-to-face financial transaction in the non-face-to-face financial transaction password (or code) according to the present invention and the non-face-to-face financial transaction based on conventional wireless banking based non-face-to-face financial transaction A wireless page including a user interface for selecting one of the non-face-to-face financial transaction methods is generated (or extracted) and provided to the terminal (1410), and correspondingly, the terminal provides a user interface included in the wireless page. The non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) according to the present invention and a non-face-to-face financial transaction based on conventional wireless banking based non-face-to-face financial transactions are selected (1415). .

If the non-face-to-face financial transaction method (non-face-to-face financial transaction code (or code) according to the present invention through the user interface in the terminal is not selected, the non-face-to-face financial transaction method according to the conventional wireless banking based non-face-to-face financial transaction is selected) 1420, the terminal performs the conventional wireless banking based non-face-to-face financial transaction procedure shown in FIGS. 15 and / or 16.

On the other hand, if the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention is selected in the terminal (1420), the terminal through the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (1425), and the server uses the password (or code) registered through the information registration system shown in FIG. Or (code) to verify the validity of the number of times of use for non-face-to-face financial transactions (1430).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the usage frequency for the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is not authenticated (1435), the server generates a wireless page including predetermined financial transaction error information and transmits it to the terminal. In step 1440, the wireless banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the number of times of non-face-to-face financial transactions using the non-face-to-face financial transaction password (or code) is authenticated (1435), the server selects a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). A wireless page including a predetermined financial transaction type selection interface is generated and provided to the terminal (1445). In response, the terminal transmits the non-face-to-face financial transaction password (or code) through the financial transaction type selection interface. The financial transaction type selection information through the input (or selection) (1450).

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (1455), the terminal transmits the financial transaction type selection information to the server (1460), and the server In step 1465, the validity of the non-face-to-face financial transaction type (or code) through the non-face-to-face financial transaction password (or code) is confirmed through a password (or code) using condition registered through the information registration system shown in FIG.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to check whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password. A non-face-to-face financial transaction through (or a code) is considered invalid, whereas a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If it matches, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (1470), the server generates a wireless page containing predetermined financial transaction error information and transmits it to the terminal. 1147, the wireless banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (1470), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). The terminal generates (or extracts) a wireless page including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) (1474). The wireless page including the transmission is output to the terminal (1476).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined wireless banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferred to include a user interface for entering (or selecting) a non-face-to-face financial transaction password (or code) for validating the transaction.

In addition, the wireless page transmission and / or output process is preferably performed at least one or more times according to the wireless banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal transmits predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and predetermined non-face-to-face financial transaction password (or code) for authenticating the non-face-to-face financial transaction through the financial transaction interface. (1478).

If the terminal enters (or selects) a non-face-to-face financial transaction password (or code) through the financial transaction interface through the financial transaction interface (1480), the terminal receives the input (or selected) financial transaction request information. And a non-face-to-face financial transaction password (or code) is transmitted to the server (1482), and the server performs the non-face-to-face financial transaction through a condition of using a password (or code) registered through the information registration system shown in FIG. The validity of the non-face-to-face financial transaction amount through a password (or code) is verified (1484).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). The server checks whether the non-face-to-face financial transaction password (or code) exceeds the limit by checking whether the non-face-to-face financial transaction password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). ), The non-face-to-face financial transaction through) is treated as invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) does not exceed the limit included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated (1486), the server includes predetermined financial transaction error information. A wireless page is generated and transmitted to the terminal (1488), and the wireless banking-based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) terms of use (1486), the server receives the received non-face-to-face financial transaction password (or Code) (1490).

According to an embodiment of the present invention, the validity authentication process for the non-face-to-face financial transaction password (or code) may include a non-face-to-face provided on the non-face-to-face financial transaction password (or code) received from the terminal and the wireless banking system. It is preferable to include the process of comparing the financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (1492), the server generates a wireless page including the predetermined financial transaction error information and transmits it to the terminal (1488). Do not perform banking-based non-face-to-face financial transactions procedures.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (1492), the server performs a financial transaction procedure corresponding to the financial transaction request information (1494).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the wireless banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If the financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs during the financial transaction procedure) (1496), the server generates a wireless page including predetermined financial transaction error information. In step 1488, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (1496), the server generates a wireless page including the predetermined financial transaction history information and transmits it to the terminal (1498), the financial transaction requested from the terminal To complete.

15 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to another embodiment of the present invention.

More particularly, FIG. 15 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the wireless banking system shown in FIG. 13, when the wireless terminal 140 requests a non-face-to-face financial transaction through a WAP / ME based wireless communication network (eg, a CDMA based mobile communication network) according to a conventional internet banking procedure, The present invention relates to a method of connecting a wireless banking-based financial transaction channel between the wireless terminal 140 and the wireless banking server by performing a previously defined customer authentication procedure in an internet banking server. If a person having a, a non-face-to-face financial transaction between the wireless terminal 140 and the wireless banking server by referring to and / or modified in this figure 15 For would be able to infer the various embodiments how to connect the wireless banking based financial transaction channel, the present invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 15.

That is, FIG. 15 illustrates a non-face-to-face finance between the wireless terminal 140 and the wireless banking server based on the browser program when accessing the wireless banking server through a predetermined browser program provided in the wireless terminal 140. Although an implementation method of connecting a wireless banking-based financial transaction channel for a transaction has been shown, a person having ordinary knowledge in the technical field to which the present invention belongs is connected to a wireless banking-based financial transaction channel using a browser program shown in FIG. By referring to and / or modifying the method, a wireless banking-based financial transaction channel for non-face-to-face financial transactions is established between the wireless terminal 140 and the wireless banking server based on a predetermined wireless banking program mounted on the wireless terminal 140. Infer the implementation method of the connection, and / or IEEE 8 using MIP (Mobile IP) in addition to the WAP / ME based wireless banking system 02.16x-based mobile Internet and / or IEEE 802.11x-based implementation method for connecting a financial transaction channel using a wireless LAN may be inferred, but the present invention provides a wireless banking-based financial transactions provided based on the wireless banking program And the invention is not limited thereby.

In addition, those skilled in the art to which the present invention pertains, in addition to the Internet banking system by referring to and / or modifying the Internet banking-based financial transaction channel connection method shown in Figure 15, Internet banking system and / or Other banking systems, such as telebanking systems and / or TV banking systems and / or home banking systems, may infer an implementation method for linking non-face-to-face channel-based financial transactions channels for non-face-to-face financial transactions. The present invention includes all types of non-face-to-face channel-based financial transactions, including Internet banking systems and / or tele-banking systems and / or TV banking systems and / or home banking systems and / or future non-face-to-face banking systems. Is not limited to the case of the wireless banking shown in FIG.

Hereinafter, in FIG. 15, the wireless terminal 140 is referred to as a "terminal" for convenience, and the wireless banking server is referred to as a "server" for convenience.

Referring to FIG. 15, when the non-face-to-face financial transaction is performed according to a conventional wireless banking procedure in the process illustrated in FIG. 14, the server may generate a predetermined wireless page (or extracted) for providing to the terminal. In addition, a predetermined security module for wireless banking is mounted on the terminal in a wireless banking main page, and / or a predetermined script for checking whether to update the security module is provided to the terminal, It is determined whether a predetermined security module for wireless banking is installed in the terminal and / or whether the security module is updated (1510).

According to another exemplary embodiment of the present invention, when the wireless terminal 140 is provided with a predetermined wireless banking program, the server requests the wireless banking program for version information and / or last update date information, and the like. It may be determined whether to update the program (and / or the security module associated with the wireless banking program).

If a predetermined security module is to be installed and / or updated in the terminal (1515), the server transmits the latest version of the wireless banking security module to the terminal according to a remote program installation procedure defined in the browser program. And mount and / or update (1520).

If the terminal does not need to install and / or update the latest version of the wireless banking security module (1525), or if the terminal does not need to install and / or update the wireless banking security module (1515), the server may By activating the security module for wireless banking mounted on the terminal, the wireless banking security channel is connected between the terminal and the server (or the communication channel between the terminal and the server is switched to a secure channel) (1530), where the security for wireless banking A channel means a predetermined digital signature attached to information (or data) required for security among information (or data) included in a wireless page provided from the server to the terminal, and / or at least one encryption method ( And / or an encryption algorithm), the terminal may verify the electronic signature and / or the encryption scheme (and / or encryption algorithm). Means a communication channel for decoding the information (or data) by a corresponding predetermined decoding scheme (and / or decryption algorithm), and the information (or data) to be provided to the server for non-face-to-face financial transactions by the terminal. When a predetermined digital signature is attached to and / or encrypted and transmitted using at least one encryption method (and / or encryption algorithm), the server verifies the electronic signature and / or the encryption method (and / or encryption algorithm). Means a communication channel for decoding the information (or data) by a predetermined decoding scheme (and / or decoding algorithm) corresponding to the &quot;

According to another embodiment of the present invention, when the wireless terminal 140 is provided with a predetermined wireless banking program, the wireless banking-based secure channel is provided from the server to the terminal according to a communication protocol defined in the wireless banking program. When the electronic signature is attached to the information (or data) to be performed and / or is encrypted and provided by at least one or more encryption methods (and / or encryption algorithms), the terminal confirms the electronic signature and / or the encryption method. Means a communication channel for decrypting the information (or data) with a predetermined decryption method (and / or decryption algorithm) corresponding to (and / or an encryption algorithm), and also for the non-face-to-face financial transaction in the terminal. Attach certain electronic signatures to information (or data) to be provided by When encrypted and transmitted using an encryption method (and / or an encryption algorithm), the server verifies the digital signature and / or a predetermined decryption method (and / or decryption algorithm) corresponding to the encryption method (and / or encryption algorithm). ) Means a communication channel for decoding the information (or data).

According to the present invention, the security module is to perform an electronic signature attachment, and / or encryption, and / or protection function for the information (or data) by using the customer's authorized certificate mounted on the terminal It features.

When the secure banking channel is connected as described above, the server requests the terminal to perform a wireless banking customer authentication procedure through the browser program (1535).

According to an exemplary embodiment of the present invention, the wireless banking customer authentication procedure may include predetermined wireless banking-based customer authentication data (eg, ID / PW, customer number, etc., registered by the customer in the wireless banking application process) through the terminal. ) Is input (or generated) and transmitted to the server, wherein the server comprises authenticating a customer connected through the terminal as a wireless banking customer based on the customer authentication data, wherein the customer authentication data It is preferable that the digital signature and / or encrypted is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the wireless banking customer authentication procedure may include predetermined wireless banking-based customer authentication data (eg, an ID / PW or customer number registered by the customer in a wireless banking application process) through the terminal. Etc.) and input (or generate) and transmit the data to the authentication server, wherein the authentication server authenticates the customer connected through the terminal as a wireless banking customer based on the customer authentication data, and provides the result to the server. In this case, it is preferable that the customer authentication data include public certificate-based authentication data, and the authentication server is a server that authenticates the public certificate-based authentication data.

Thereafter, the terminal inputs (or generates) predetermined customer authentication data according to the request, and transmits the electronic signature and / or encryption to the server (and / or authentication server) through the security module to perform wireless banking customer authentication. Request (1540), the server (and / or authentication server) authenticates the customer connected through the terminal as a wireless banking customer for non-face-to-face financial transactions based on the customer authentication data received from the terminal. (1545).

If the wireless banking customer authentication fails (1550), the server blocks the wireless banking security channel for the terminal (1555), so that the wireless banking-based financial transaction is not made through the terminal.

On the other hand, if the wireless banking customer authentication is successful (1550), the server converts the wireless banking security channel into a wireless banking-based financial transaction channel in connection with the security module provided in the terminal (1560), where the wireless banking-based The financial transaction channel refers to at least one financial transaction request requested from the terminal, and the server accesses the ledger on the financial system to perform the requested financial transaction (eg, account inquiry, account transfer, bill payment, .. Communication channel).

16 is a diagram illustrating a conventional non-face-to-face financial transaction method according to another embodiment of the present invention.

More specifically, FIG. 16 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the wireless banking system shown in FIG. 13, after the wireless terminal 140 accesses the wireless banking server through the process shown in FIG. 15 and performs a conventional customer authentication procedure, the wireless terminal 140 When a wireless banking-based financial transaction channel is connected between the wireless banking server and the wireless banking server, the wireless terminal 140 requests a non-face-to-face financial transaction through the wireless banking-based financial transaction channel, and at the wireless banking server. And processing the requested financial transaction and providing the result to the wireless terminal 140 through the wireless banking-based financial transaction channel. As one having ordinary skill in the art to which the present invention pertains, various financing using a wireless banking-based financial transaction channel between the wireless terminal 140 and the wireless banking server may be made by referring to and / or modifying the drawing 16. It will be possible to infer a transaction method, but the present invention includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

That is, FIG. 16 illustrates the wireless terminal 140 through the browser program when the wireless banking-based financial transaction channel is connected by accessing the wireless banking server through a predetermined wireless communication network provided in the wireless terminal 140. Although an implementation method for processing a financial transaction requested from) is illustrated, those of ordinary skill in the art may refer to a wireless banking based financial transaction method using a browser program shown in FIG. Alternatively, it may be possible to infer various types of wireless banking based financial transaction methods between the wireless terminal 140 and the wireless banking server based on a predetermined wireless banking program mounted on the wireless terminal 140. The invention includes a provided wireless banking-based financial transaction based on the wireless banking program, It does not limit the invention.

In addition, those skilled in the art to which the present invention pertains may refer to and / or modify the wireless banking-based financial transaction method shown in FIG. 16, in addition to the wireless banking system, a telebanking system and / or a wireless banking system. Other banking systems, such as systems and / or TV banking systems, may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention is directed to the telebanking system and / or wireless banking system and / or TV. It includes all types of non-face-to-face channel-based financial transactions including banking system and / or non-face-to-face channel banking system proposed in the future, the technical configuration of the present invention is limited to the case of the wireless banking shown in FIG. Never.

Hereinafter, in FIG. 16, the wireless terminal 140 is referred to as a "terminal" for convenience, and the wireless banking server is referred to as a "server" for convenience.

Referring to FIG. 16, when the wireless banking-based financial transaction channel between the terminal and the server is connected through the process illustrated in FIG. 15, the terminal transmits the wireless banking-based financial transaction channel to the non-face-to-face financial transaction. When a wireless banking-based financial transaction is requested to a server (1600), the server generates (or extracts) a wireless page including a predetermined financial transaction interface corresponding to the requested non-face-to-face financial transaction (1610), and the wireless The generated (or extracted) wireless page is transmitted to the terminal through a banking-based financial transaction channel (1615).

According to an embodiment of the present invention, the financial transaction interface may perform predetermined financial transaction request information for processing a predetermined wireless banking based financial transaction based on the selected (or input) account information, and / or the financial transaction. A predetermined password (e.g., account password, etc.) and / or security code (e.g., a security code printed on the security card issued to the customer during the wireless banking application process) to verify the validity of the requesting wireless banking customer and / or Enter (or select) an One Time Password (OTP) (e.g., a one-time password generated by an OTP authenticator (or OTP certification program) provided to a customer by a financial institution (or after a wireless banking application). It is preferable to further include a user interface.

In addition, the wireless page transmission and / or output process is preferably performed at least one or more times according to the wireless banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) financial transaction request information including at least one for each wireless banking-based financial transaction through the financial transaction interface (1620).

If the terminal receives (or selects) the financial transaction request information through the financial transaction interface (1625), the terminal transmits the input (or selected) financial transaction request information to the server through the financial transaction channel. Send (1630).

According to an embodiment of the present invention, transmitting the financial transaction request information (or selected) inputted through the financial transaction channel to the server may include the financial transaction request information input (or selected) through the financial transaction interface. It comprises the electronic signature and / or encryption through the security module provided in the terminal and transmitting to the server.

Thereafter, the server checks and validates the validity of the financial transaction request information by receiving and reading the financial transaction request information through the financial transaction channel (1635).

According to an embodiment of the present invention, receiving and reading the financial transaction request information through the financial transaction channel to confirm validity may decode the financial transaction request information received from the terminal and / or the financial transaction request information. This includes checking the digital signature attached to it.

In addition, the validation of the financial transaction request information, preferably, further comprises authenticating a password and / or security code and / or OTP included in the financial transaction request information.

If the validity of the financial transaction request information is not authenticated (1640), the server generates a wireless page including predetermined financial transaction error information and transmits it to the terminal (1645), corresponding to the financial transaction request information. Do not perform financial transaction procedures.

On the other hand, if the validity of the financial transaction request information is authenticated (1640), the server performs a financial transaction procedure corresponding to the financial transaction request information (1650).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the wireless banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. (Or at least one additional information associated with the ledger information) is preferably included.

If the financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs during the financial transaction procedure) (1655), the server generates a wireless page including predetermined financial transaction error information. In operation 1645, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if a financial transaction corresponding to the financial transaction request information is successful (1655), the server generates a wireless page including predetermined financial transaction history information and transmits it to the terminal (1660), thereby requesting the financial transaction from the terminal. To complete.

17 is a diagram illustrating an information registration system for registering a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

In more detail, FIG. 17 illustrates a non-face-to-face financial transaction password (or code) for a non-face-to-face financial transaction password (or code) registration according to the present invention to a non-face-to-face financial transaction system through a predetermined information registration interface. If the password (or code) using condition information is provided, the non-face-to-face financial transaction system stores the non-face-to-face financial transaction password (or code) and the password (or code) using condition information in association with a predetermined storage medium. As a system configuration, a person having ordinary knowledge in the technical field to which the present invention pertains may refer to and / or modify this drawing 17, and various information on the system of information registration system for non-face-to-face financial transaction password (or code) registration. It would be possible to infer an implementation method, but the present invention includes all implementation methods inferred from the above. It shall not be limited to the exemplary method shown in Fig. 17.

For example, when the non-face-to-face financial transaction password (or code) terms of use are fixed and / or adjusted by the non-face-to-face financial transaction system, the password (or code) terms of use information may be omitted. The present invention is not limited by this.

Hereinafter, a non-face-to-face financial transaction password (or code) and password (or code) using condition information provided from the customer through a predetermined information registration interface on the information registration system shown in FIG. 17 for storing in the storage medium. Components corresponding to at least one or more means and / or functional configurations are referred to as " information registration server 1700 " for convenience.

Referring to this figure 17 in accordance with an embodiment of the present invention, an information registration system for registering a non-face-to-face financial transaction password (or code) according to the present invention includes a wired terminal 1745 and / or used by at least one or more customers. And an information registration terminal 1735 including at least one client terminal or the like including at least one wireless terminal 1740. The communication channel is connected to the information registration server 1700 provided on the non-face-to-face financial transaction system.

According to an exemplary embodiment of the present invention, the customer may use the information registration server through at least one client terminal of a wired terminal 1745 connected to a predetermined wired network and / or a wireless terminal 1740 connected to a predetermined wireless communication network. 1700 and a non-face-to-face financial transaction password (or code) and password for non-face-to-face financial transaction password (or code) registration according to the present invention through at least one user interface provided by the information registration server 1700. (Or code) When the use condition information is input (or selected), it is preferable that the client terminal transmits the information to the information registration server 1700 provided on the non-face-to-face financial transaction system through a predetermined network means.

Here, the wired terminal 1745 connected to the wired network is a generic term for all terminal devices connected to a TCP / IP-based communication network, and includes a desktop computer connected to the TCP / IP-based communication network. / Or at least one notebook, or a consumer terminal connected to the TCP / IP based communication network (eg, Set-Top-Box, etc.), or a kiosk connected to the TCP / IP based communication network. It is preferable to comprise.

In addition, the wireless terminal 1740 connected to the wireless network includes all terminal devices connected to a code division multiple access (CDMA) based mobile communication network, and / or all terminal devices connected to the IEEE 802.16x based mobile Internet, and / or Motorola. General term for all terminal devices connected to the company's DataTAC method and / or Erricson's Mobitex method wireless data communication network, and are connected to the CDMA-based mobile communication network (Personal Communication System; PCS) and / or GSM (Global System for Mobile communications). Terminal and / or Personal Digital Cellular (PDC) and / or Personal Handyphone System (PHS) terminal and / or Personal Digital Assistant (PDA) and / or smart phone and / or Or telematics, or a portable Internet terminal connected to the IEEE 802.16x based portable Internet, or the DataTAC / Mobitex based non- It comprises a wireless data communication terminal connected to a data network, such as at least one is preferable.

According to the present invention, the information registration terminal 1735 including the wired terminal 1745 and / or the wireless terminal 1740 may be configured for the non-face-to-face financial transaction password (or code) and password (or code) usage condition information. Validation (e.g., confidentiality, authentication, integrity and nonrepudiation of the non-face-to-face financial transaction password (or code) and password (or code) terms of use information) A predetermined certificate is provided, and / or a certificate which is provided in a predetermined portable storage device (eg, an integrated circuit (IC) card and / or a universal serial bus (USB) memory, etc.) can be used. It is characterized in that the function is provided.

Also, the information registration server 1700 connected to the client terminal may be any one of an internet banking server and / or a wireless banking server and / or a telebanking server and / or a TV banking server according to the characteristics of the client terminal and network means. And / or preferably comprises a separate web server for the information registration.

In addition, the network means for connecting the client terminal and the information registration server 1700 may be a CDMA-based mobile communication network and / or IEEE 802.16x-based portable Internet and / or DataTAC / according to the type of wireless network connected to the client terminal Mobitex-based wireless data communication network, and / or comprises a wireless communication network of any kind proposed in the future including a predetermined wireless interval.

In addition, the client terminal outputs at least one or more user interfaces provided by the information registration server 1700, and inputs and / or selects at least one or more information through the user interface to the information registration server 1700. It is preferable that a function configuration for transmitting (for example, a browser program and a communication function, or a predetermined communication program and a communication function to communicate with the information registration server 1700) is provided.

Those skilled in the art to which the present invention pertains can easily infer the characteristics of the client terminal corresponding to at least one or more wired terminals 1745 and / or wireless terminals 1740. Detailed description is omitted for convenience.

In the information registration system as described above, a client terminal including at least one wired terminal 1745 and / or a wireless terminal 1740 used by the customer, and the client terminal and the information registration server 1700 are connected. At least one wired network and / or wireless network registers the non-face-to-face financial transaction password (or code) and password (or code) usage condition information for the customer to register the face-to-face financial transaction password (or code) according to the present invention. It performs the function of the information registration interface.

According to another exemplary embodiment of the present invention, the information registration terminal 1735 may include an automatic teller machine (ATM) and a cash dispenser (CD) connected to a predetermined financial network (for example, a financial common network). A predetermined call connected to a wired telephone network such as a financial automation device (not shown), and / or a public switched telephone network (PSTN) or a voice over IP (VoIP) network. It further comprises a terminal (not shown), and / or further comprises a predetermined call terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and / or affiliated with the financial institution It may further include a terminal (and / or server) (not shown) provided in at least one or more institutions, the present invention is not limited thereto.

According to the present invention, a financial automatic machine including an automatic teller machine (ATM), a cash dispenser (CD) connected to the financial network (eg, a financial common network), and / or a predetermined public A predetermined call terminal (not shown) connected to a wired telephone network such as a telephone network (PSTN), a VoIP network, and / or a predetermined call terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and / or The information registration terminal 1735 including a terminal (and / or server) (not shown) provided in at least one institution affiliated with a financial institution includes the non-face-to-face financial transaction password (or code) and password (or code). ) Validation of the usage condition information (eg, confidentiality, authentication, and integrity of the non-face-to-face financial transaction password (or code) and password (or code) usage condition information) (E.g., an Integrity, Nonrepudiation, etc.) is provided with a predetermined public certificate, and / or a predetermined portable storage device (e.g., IC (Integrated Circuit) card, and / or USB (Universal Serial Bus)) Memory, etc.) is characterized in that it is provided with a function that can use the certificate.

In the above information registration system, when the information registration terminal 1735 is the financial automatic device (not shown), the financial automatic device (not shown), the financial automatic device (not shown), and the information registration server The financial network connecting 1700 is for the customer to register the non-face-to-face financial transaction password (or code) and password (or code) use condition information for registration of the non-face-to-face financial transaction password (or code) according to the present invention. Performs a function of an information registration interface, and / or when the information registration terminal 1735 is the call terminal (not shown), the call terminal (not shown) and the call terminal (not shown) and the information registration server. A wired telephone network and / or a wireless telephone network connecting 1700 may include a non-face-to-face financial transaction password (or code) for the customer to register a non-face-to-face financial transaction password (or code) according to the present invention. E) and / or a terminal (and / or) provided in an institution affiliated with the financial institution, which is the information registration terminal 1735, and / or performs a function of an information registration interface for registering password (or code) use condition information. Server (not shown), a network connecting the terminal (and / or server) (not shown) and the terminal (and / or server) (not shown) and the information registration server 1700 is provided by the customer. In order to register a non-face-to-face financial transaction password (or code) according to the present invention, a function of an information registration interface for registering non-face-to-face financial transaction password (or code) and password (or code) use condition information is performed.

The storage medium provided on the non-face-to-face financial transaction system according to the present invention is the non-face-to-face financial transaction password (or code) and password (or code) using condition information provided from the information registration terminal 1735 by The non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in the storage medium may be stored in a predetermined internet banking system, and / or a telebanking system, and / or wireless banking. It is used to authenticate non-face-to-face financial transactions through a face-to-face financial transaction system that includes at least one of a system, and / or a TV banking system, and / or a home banking system.

Here, the non-face-to-face financial transaction password (or code) is at least one or more of a predetermined Internet banking system, and / or a tele banking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. In the non-face-to-face financial transaction system including a non-face-to-face financial transaction validity authentication through a conventional accredited certificate, and / or skip the non-face-to-face financial transaction validity verification process through at least one security code provided in the security card, the non-face-to-face And a password (or code) for authenticating at least one non-face-to-face financial transaction through the financial transaction system.

According to an embodiment of the present invention, the non-face-to-face financial transaction password (or code) registration process may be performed by a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system. Or in a non-face-to-face financial transaction system including at least one or more of the home banking system, through a validity authentication through a conventional certificate, and / or a non-face-to-face financial transaction validation process using at least one security code provided on a security card. Then, it is preferable to authenticate the validity of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code).

In addition, the password (or code) using condition information is at least one or more of a predetermined Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. Among the non-face-to-face financial transactions through the non-face-to-face financial transaction system comprising the non-face-to-face financial transaction password (or code) characterized in that it comprises a non-face-to-face financial transaction conditions.

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system including at least one of the systems, it is preferable to limit the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one time.

Alternatively, the password (or code) usage condition information may include at least one or more of a predetermined Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. In the non-face-to-face financial transaction system including, it is preferable to limit the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to N (N> 1) times.

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system including at least one or more of the system, it is preferable to include limit amount information on the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code).

According to an embodiment of the present invention, the password (or code) use condition information may be selected from a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or home banking. In a non-face-to-face financial transaction system that includes at least one of the systems, the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) may be used to transfer a specific financial transaction (eg, transfer to a designated financial account, or pay bills, or CMS) (Cash Management Service) It is preferable to limit to a deposit or a small account transfer.

According to one embodiment of the invention, the storage medium is preferably provided in a DBMS on a financial system provided on the non-face-to-face financial transaction system (or associated with the non-face-to-face financial transaction system), wherein the storage The medium may be a ledger D / B provided in the DBMS on the financial system, and / or a predetermined database associated with the ledger D / B, and the present invention is not limited thereto.

According to another embodiment of the present invention, the storage medium is an Internet banking system, and / or a telebanking system, and / or a wireless banking system provided on (or associated with) the non-face-to-face financial transaction system, and / or It is possible to be provided in a DBMS on at least one banking system of a TV banking system and / or a home banking system, whereby the present invention is not limited.

The information registration server 1700 provided on the non-face-to-face financial transaction system according to the present invention is a generic term for the non-face-to-face financial transaction system side components connected to the information registration terminal 1735 through a predetermined network means. It may be implemented by including at least one server (or device), and / or implemented by at least one or more programs recorded on a recording medium provided in a predetermined server (or device), by which the present invention is not limited. .

According to an embodiment of the present invention, when the information registration terminal 1735 is a client terminal including a wired terminal 1745 and / or a wireless terminal 1740 connectable to an internet banking server on a predetermined internet banking system. The information registration server 1700 is a predetermined Internet banking server provided on the Internet banking system, and / or a program provided on the Internet banking server, and / or an external system of the financial system through the Internet banking system. A predetermined server (or device) accessible to the program, a program included in the server (or device), and / or on the financial system accessible through the Internet banking server (and / or the server (or device)). It may be a server (or device) provided in the external system, and / or a program provided in the external system on the financial system, thereby The invention is not limited.

According to another embodiment of the present invention, when the information registration terminal 1735 is a client terminal including a wireless terminal 1740 connectable with a wireless banking server on a predetermined wireless banking system, the information registration server 1700 is A predetermined server provided on the wireless banking system, and / or a program provided on the wireless banking server, and / or a predetermined server accessible to the external system of the financial system through the wireless banking system ( Or a device provided in the external system on the financial system which is a program provided in the server (or device), and / or accessible through the wireless banking server (and / or the server (or device)). Or a device), and / or a program provided in the external system on the financial system, and the present invention is not limited thereto.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a call terminal (not shown) connectable with a telebanking server on a predetermined telebanking system, the information registration server 1700 is the telebanking. A predetermined telebanking server (e.g., an Automatic Response Service (ARS) server) provided on the system, and / or a program provided on the telebanking server, and / or the banking system of the financial system through the telebanking system. The financial system accessible to an alien server through a predetermined server (or device), a program included in the server (or device), and / or accessible through the telebanking server (and / or the server (or device)). It may be a server (or device) provided in the external world on the system, and / or a program provided in the external world on the financial system, thereby limiting the present invention. It does.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a wired terminal 1745 (or two-way digital TV) capable of connecting with a TV banking server on a predetermined TV banking system, the information registration server 1700 ) Is a predetermined TV banking server provided on the TV banking system, and / or a program provided on the TV banking server, and / or is accessible to a foreign system of the financial system through the TV banking system. A server (or device), a program included in the server (or device), and / or an external system on the financial system accessible through the TV banking server (and / or the server (or device)). It may be a server (or a device), and / or a program provided in the external world on the financial system, whereby the present invention is not limited.

According to an embodiment of the present invention, the information registration server 1700 is provided with an interface unit 1705 connecting and managing a predetermined communication channel with the information registration terminal 1735 through the network means. do.

When the information registration terminal 1735 is a client terminal including a wired terminal 1745 and / or a wireless terminal 1740 connected to a predetermined wired network and / or a wireless network according to an embodiment of the present invention, An interface unit connects a predetermined communication channel with the client terminal based on a protocol stack defined in the wired network and / or a wireless network, and uses at least one information using a communication protocol defined in a communication program provided in the client terminal. It is desirable to provide a communication interface for transmitting and receiving (or data).

For example, when the client terminal is provided with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 1705 connects a communication channel with the client terminal based on the TCP / IP protocol. By using the HTPP protocol defined in the browser program, a communication interface for transmitting and receiving a web page (eg, a Hyper-Text Markup Language (HTML) compatible web page) and / or information is provided.

Alternatively, when the client terminal is provided with a communication program (eg, an internet banking program) provided by the information registration server 1700, the interface unit 1705 communicates with the client terminal based on the TCP / IP protocol. It connects a channel and provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the communication program.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a client terminal including a wireless terminal 1740 connected to a predetermined wireless network, the interface unit 1705 is defined in the wireless network. Connecting a predetermined communication channel with the client terminal based on a protocol stack, and providing a communication interface for transmitting and receiving at least one information (or data) using a communication protocol defined in a communication program provided in the client terminal. desirable.

For example, when the client terminal is equipped with a browser program corresponding to a WAP (Wireless Application Protocol) and / or a Mobile Explorer (ME) protocol, the interface unit 1705 communicates with the client terminal based on the CDMA protocol. And a communication interface for transmitting and receiving web pages (e.g., WML (Wireless Markup Language) compatible web pages, or HTML compatible web pages) and / or information using the WAP / ME protocol defined in the browser program. .

Alternatively, when the client terminal is provided with a communication program (eg, an IC chip-based banking program) provided by the information registration server 1700, the interface unit 1705 may be connected to the client terminal based on the CDMA protocol. It connects a communication channel and provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the communication program.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a call terminal (not shown) connected to a wired telephone network and / or a wireless telephone network, the interface unit 1705 is connected to the wired telephone network and / or It is preferable to connect a communication terminal (not shown) with a predetermined call path based on a voice call protocol defined in a wireless telephone network, and to provide a communication interface for transmitting and receiving the voice call-based information (or data).

For example, the interface unit 1705 provides a communication interface for transmitting and receiving information based on Dual Tone MultiFrequency (DTMF) through the call terminal and the communication path, and / or provides a communication interface for transmitting and receiving information based on voice recognition. to provide.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a wired terminal 1745 (or two-way digital TV) connected to a TV banking system, the interface unit 1705 is connected to the TV banking system. A communication protocol defined in a communication program included in the wired terminal 1745 (or bidirectional digital TV) is connected to the wired terminal 1745 (or bidirectional digital TV) based on a defined protocol stack. It is desirable to provide a communication interface for transmitting and receiving at least one or more information (or data).

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a home appliance terminal connected to a home banking system, the interface unit 1705 is based on the protocol stack defined in the home banking system. It is desirable to provide a communication interface for connecting at least one communication channel with a terminal and transmitting and receiving at least one information (or data) using a communication protocol defined in a communication program provided in the home appliance terminal.

Referring to FIG. 20, the information registration server 1700 interworks with the interface unit 1705 when a predetermined information registration terminal 1735 connects to the information registration server 1700 through the interface unit 1705. Generate (or extract) a predetermined user interface for inputting (or selecting) predetermined non-face-to-face financial transaction password (or code) and password (or code) using condition information from the information registration terminal 1735 An interface providing unit 1710 provided to the information registration terminal 1735 and a predetermined input (or selection) transmitted by the information registration terminal 1735 through the user interface in association with the interface unit 1705. An information receiving unit 1715 for receiving non-face-to-face financial transaction password (or code) and password (or code) terms and conditions information, and the received non-face-to-face financial transaction password (or code) And the number (or code) using condition information characterized by comprising an information storage unit 1725 for storing in association processing in the storage medium.

The interface providing unit 1710 corresponds to a functional configuration provided in the information registration terminal 1735 when a predetermined information registration terminal 1735 is connected to the information registration server 1700 through the interface unit 1705. Generate (or select) the non-face-to-face financial transaction password (or code) and password (or code) use condition information to generate a predetermined user interface which can be transmitted to the information registration server 1700 via the network means; And / or extract from a predetermined database (not shown) and provide the generated (or extracted) user interface to the information registration terminal 1735 via the network means in association with the interface unit 1705. It features.

Thereafter, the information registration terminal 1735 inputs (or selects) the non-face-to-face financial transaction password (or code) and password (or code) using condition information based on the user interface. The non-face-to-face financial transaction password (or code) and password (or code) use condition information are transmitted to the information registration server 1700 via the network means.

When the information registration terminal 1735 is a client terminal including a wired terminal 1745 and / or a wireless terminal 1740 connected to a predetermined wired network and / or a wireless network according to an embodiment of the present invention, The interface providing unit 1710 generates (or extracts) a predetermined user interface that can be provided to a browser program and / or a communication program provided in the client terminal, and generates (or extracts) the interface through the interface unit 1705. It is desirable to provide a user interface to the client terminal.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a client terminal including a wireless terminal 1740 connected to a predetermined wireless network, the interface providing unit 1710 is provided in the client terminal. It is preferable to generate (or extract) a predetermined user interface that can be provided to a browser program and / or a communication program, and provide the generated (or extracted) user interface to the client terminal through the interface unit 1705. .

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a call terminal (not shown) connected to a wired telephone network and / or a wireless telephone network, the interface providing unit 1710 may include the call terminal (not shown). Generates (or extracts) a predetermined user interface that can be provided, and the user terminal (eg, ARS based user interface) generated (or extracted) through the interface unit 1705 to the call terminal (not shown). Is preferably provided.

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a wired terminal 1745 (or two-way digital TV) connected to a TV banking system, the interface providing unit 1710 may include the wired terminal ( 1745 (or two-way digital TV) to generate (or extract) a predetermined user interface, and through the interface unit 1705 generated (or extracted) the user interface to the wired terminal (1745) (or bidirectional) Digital TV).

According to another exemplary embodiment of the present invention, when the information registration terminal 1735 is a home appliance terminal connected to a home banking system, the interface provider 1710 generates a predetermined user interface that can be provided to the home appliance terminal ( Or extract) and provide the generated (or extracted) user interface to the home appliance terminal through the interface unit 1705.

The information receiving unit 1715 inputs (or selects) predetermined non-face-to-face financial transaction password (or code) and password (or code) using condition information from the information registration terminal 1735 through the user interface. When transmitting through, the non-face-to-face financial transaction password (or code) and password (or code) using condition information received in conjunction with the interface unit 1705, characterized in that the received non-face-to-face financial transaction password ( Or code) and password (or code) use condition information are provided to the information storage unit 1725.

The information storage unit 1725 may process the non-face-to-face financial transaction password (or code) and password (or code) using condition information received through the information receiving unit 1715 and store the information on the storage medium. If the storage medium is provided in the information registration server 1700 or on a network associated with the information registration server 1700, the information storage unit 1725 may receive the received non-face-to-face financial transaction password. (Or code) and password (or code) using condition information is preferably stored in a cooperative process to the storage medium, the information storage unit 1725 when the storage medium is provided in the DBMS provided on the financial system The non-face-to-face financial transaction password (or code) and password (or code) using condition information is provided to the information system through the external system on the financial system and stored It is desirable to.

According to the exemplary embodiment of the present invention, the information storage unit 1725 preferably stores the non-face-to-face financial transaction password (or code) and the password (or code) in association with the customer account information.

For example, when the storage medium is provided in the ledger D / B on the financial system, the non-face-to-face financial transaction password (or code) and password (or code) using condition information is preferably processed in association with a predetermined account ledger.

18 is a diagram illustrating the configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention. to be.

In more detail, in FIG. 18, when the storage medium illustrated in FIG. 17 is a ledger D / B provided in a DBMS on a financial system, the non-face-to-face financial transaction password (or code) is included in the ledger information provided in the ledger D / B. ) And an information structure for one embodiment of a method of storing password (or code) using condition information, and a person of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 18. Various information construction methods for storing the non-face-to-face financial transaction password (or code) and password (or code) usage condition information in the ledger D / B may be inferred, but the present invention includes all the inferred implementation methods. The present invention is not limited to the implementation method shown in FIG.

Referring to FIG. 18 according to an embodiment of the present invention, the ledger information included in the ledger D / B provided in the DBMS on the financial system includes a predetermined ledger and an account ledger associated with the ledger (eg, a ledger ledger). , Loan ledger, etc.) and at least one information associated with the account ledger, if the person having ordinary knowledge in the technical field to which the present invention belongs, ledger provided in the DBMS on the financial system D / In addition to the customer ledger and the account ledger shown in FIG. 18, B further includes at least one ledger (e.g., a loan ledger, a mortgage ledger, ..., etc.) and / or at least one additional information for maintaining and managing the ledgers. It will be clearly understood that it is included, and will also be familiar with the specific technical matters, so a detailed description thereof is omitted for convenience. .

The customer ledger is CIF (Customer Information File) number, country code, contact person ID, sales office number, customer classification, customer name, customer address, regional classification code, telephone number, business number, business name, classification code, expiration date, status head office Information, Settlement Date, Cash Date, Last Name, Person, Social Security Number, Company Address, Company Phone Number, Mailing Address, Account Number, President, Business Type, Legal Representative, Initial Transaction Date, TRW, DB, Usage, Parent Company Number. Country name, transmission, sex resident, occupation, mailing address, company name, guardian name, guardian telephone number, legal representative business number, construction process classification, tax classification, area code, group code and postal code, etc. The customer ledger includes ledger information for a customer including at least one of an individual customer, a corporate customer, a minor, and the like.

Those skilled in the art to which the present invention pertains will clearly understand the contents and features of the information contained in the customer ledger, and thus the detailed description thereof will be omitted for convenience.

In addition, the account ledger is linked to the customer ledger relationally, account number, CIF number, point number, currency, opening date, status, product type, interest rate, password, balance, RBI balance 1, RBI balance 2, bank balance , Bank account number, interest interest, time extension, time extension amount, ARS setting, last deposit date, last withdrawal date, final deposit amount, final withdrawal amount, unpaid account transactions, interest rate account, flat currency connection, final payment interest, final payment transaction It includes at least one of a number, an individual interest rate reference, and a final interest calculation date, and includes at least one account number, abstention (month), period (days), period extension, maturity date, and target amount corresponding to the account ledger. Periodic reception information, and / or trust reception information including at least one or more of an account number, a deposit amount, a par value, a pension date, and the number of shares corresponding to the account ledger, and / or the account ledger. Transactions that include at least one account number, transaction number, date, point number, product type, transaction type, cash amount, RBI, batch number, batch transaction, date of payment, bank account line, summary, CIF, etc. It includes the history information.

Those skilled in the art to which the present invention pertains will clearly understand the contents and features of the information contained in the account ledger and the additional information configuration, and thus the detailed description thereof will be omitted for convenience.

Referring to FIG. 18, non-face-to-face financial transaction password (or code) and password (or code) using condition information provided through the information registration system shown in FIG. 17 are stored in the form of additional information added to the account ledger. Thereby, in a window-based financial transaction based on the financial system, and / or an internet banking-based financial transaction, and / or a wireless banking-based financial transaction, and / or a telebanking-based financial transaction and / or a TV banking-based financial transaction, The non-face-to-face financial transaction password (or code) and non-face-to-face financial transaction using the password (or code) using condition information is provided.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) use condition information are stored in the form of information included in the account ledger (not shown), and / or the It can both be stored in the form of additional information added to the ledger other than the account ledger (eg, the customer ledger), and / or in the form of information contained in the ledger other than the account ledger (eg, the customer ledger). The present invention is not limited.

19 is a diagram illustrating the configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. Drawing.

More specifically, FIG. 19 illustrates an information structure for an exemplary method in which the storage medium shown in FIG. 17 is stored in a predetermined database 1910 that is linked to the ledger D / B provided in a DBMS on a financial system. As those skilled in the art to which the present invention pertains, the non-face-to-face financial transaction password (or code) and password (or code) usage condition information in a predetermined database may be referred to and modified with reference to this drawing 19. It can be inferred from the various information configuration method for storing the information in association with the ledger D / B, but the present invention includes all the implementation method inferred, and is not limited to the implementation method shown in FIG.

In particular, this figure 19 is not easy to store the non-face-to-face financial transaction password (or code) and password (or code) use condition information in the ledger information of the ledger D / B on the DBMS provided on the financial system (E.g., it is not easy to change the ledger D / B 1905 of the DBMS due to the policy of the financial institution or the system expansion is not easy due to the characteristics of the financial system). The non-face-to-face financial transaction password (or code) and password (or code) usage condition information is stored, and the database and the ledger D / B are linked to the implementation method for storing.

In addition, the database shown in FIG. 19 does not need to be provided on a DBMS provided on a financial system as in the implementation method shown in FIG. 19, and a database on the Internet banking system according to the intention of a person skilled in the art, and / or It may be configured in the form of a database on a telebanking system, a database on a wireless banking system, and / or a database on a TV banking system, and the present invention is not limited thereto.

Referring to FIG. 19, the database may store the non-face-to-face financial transaction password (or code) and password (or code) using condition information in association with each other. The CIF number corresponding to the ledger information is further included in the non-face-to-face financial transaction password (or code) and the password (or code) use condition information so that password (or code) use condition information is linked to the ledger D / B. It is preferable to make it.

20 is a diagram illustrating configuration of non-face-to-face financial transaction password (or code) and password (or code) using condition information stored in a storage medium for registration of a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention. One drawing.

In more detail, FIG. 20 illustrates an embodiment in which the storage medium shown in FIG. 17 is provided in a DBMS provided on an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system. As a method, one of ordinary skill in the art to which the present invention pertains refers to a non-face-to-face financial transaction password stored in a storage medium provided in a DBMS on at least one banking system by referring to and / or modifying the drawing 20. (Or code) and password (or code) can be inferred a method of constructing information about the use condition information, but the present invention includes all the inferred implementation method, and is not limited to the implementation method shown in FIG. .

Referring to FIG. 20, the database may store the non-face-to-face financial transaction password (or code) and password (or code) using condition information in association with each other. The storage medium in which the password (or code) use condition information is stored may be at least one banking of an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. It can be made by including a system.

For example, when the storage medium is provided in a DBMS on an internet banking system, the non-face-to-face financial transaction password (or code) and password (or code) use condition information are included in banking element information stored in a DBMS on the internet banking system. Preferably stored.

21 is a diagram illustrating a process of registering a non-face-to-face financial transaction password (or code) and password (or code) using condition information according to another exemplary embodiment of the present invention.

In more detail, in FIG. 21, when the information registration system shown in FIG. 17 is realized through an Internet banking system among non-face-to-face financial transaction systems, the client terminal is a TCP / IP-based network (for example, the Internet). After accessing the Internet banking server and performing a predetermined customer authentication procedure through the client terminal, a predetermined non-face-to-face financial transaction password (or code) and password (or code) use condition for the financial transaction according to the present invention An embodiment of the present invention relates to a method for connecting an internet banking-based financial transaction channel for registering and transmitting information to the internet banking server. If a person of ordinary skill in the art belongs to the present invention, refer to FIG. 21 and / or Modify the non-face-to-face financial transaction password (or code) between the client terminal and the Internet banking server Would be an Internet banking based financial transaction channel for the lock can infer a range of exemplary methods for the connection method, the present invention includes all embodiments how the inference, not limited to the exemplary method shown in the figure 21.

That is, FIG. 21 is based on the browser program when accessing the Internet banking server through a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. Although the implementation method of connecting the Internet banking-based financial transaction channel for the non-face-to-face financial transaction password (or code) registration between the client terminal and the Internet banking server is shown, those of ordinary skill in the art to which the present invention pertains. If so, referring to and / or modifying an internet banking-based financial transaction channel connection method using the browser program shown in FIG. 21, the client terminal and the internet banking server are based on a predetermined internet banking program mounted on the client terminal. Non-face to face financial It would be possible to infer an implementation method of linking an internet banking-based financial transaction channel for password (or code) registration, but the present invention includes a provided internet banking-based financial transaction based on the internet banking program, whereby The present invention is not limited.

Also, those skilled in the art may refer to and / or modify the Internet banking-based financial transaction channel connection method shown in FIG. 21, in addition to the internet banking system, a telebanking system and / or Other banking systems, such as wireless banking systems and / or TV banking systems, may infer an implementation method for linking non-face-to-face channel-based financial transaction channels for non-face-to-face financial transaction password (or code) registration, but the present invention may It includes all types of non-face-to-face channel based financial transactions, including telebanking systems and / or wireless banking systems and / or TV banking systems and / or non-face-to-face channel banking systems proposed in the future. It is by no means limited to the case of Internet banking shown in 21.

Hereinafter, in FIG. 21, the client terminal is referred to as a " terminal " for convenience, and the Internet banking server corresponding to the information registration server 1700 is referred to as " server " for convenience and transmitted to the information registration server 1700. The face-to-face financial transaction password (or code) and password (or code) terms of use information is referred to as "non-face-to-face financial transaction authentication information" for convenience.

Referring to FIG. 21, when the terminal executes a predetermined browser program and accesses the server through the TCP / IP based network (2100), the server connects a communication channel between the terminal and the server through the browser. 2105, wherein the communication channel is a web page generated (or extracted) by a request of a browser program provided to the client terminal and transmitted to the client terminal, and the browser provided to the client terminal. It means that a predetermined communication session is allocated so that a program can receive at least one or more information (or data) input (or selected) based on a predetermined user interface included in the web page.

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server may be configured with the Internet banking program and at least one or more information based on a predetermined communication protocol defined in the internet banking program. Or a communication channel for transmitting / receiving data).

Thereafter, the server is equipped with a predetermined security module for internet banking on the terminal in a predetermined web page (eg, an internet banking main page) generated (or extracted) for providing to the terminal, and / or the By providing a predetermined script for checking whether to update the security module to the terminal, whether the terminal is equipped with a predetermined security module for Internet banking, and / or update the security module Check (2110).

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server requests the Internet banking program for version information and / or last update date information, and the like. / Or a security module associated with the Internet banking program) can be updated.

If a predetermined security module is to be mounted and / or updated in the terminal (2115), the server transmits the latest version of the Internet banking security module to the terminal according to a remote program installation procedure defined in the browser program. And mount and / or update (2120).

If the terminal does not need to install and / or update the latest version of the security module for internet banking (2125), or if the terminal does not need to install and / or update the security module for internet banking (2115), the server may By activating the security module for Internet banking mounted on the terminal, to connect the security channel for Internet banking (or switch the communication channel between the terminal and the server to a secure channel) between the terminal and the server (2130), where the security for Internet banking A channel is attached to a predetermined digital signature and / or at least one encryption method (or data) of information (or data) required for security among information (or data) included in a web page to be provided from the server to the terminal. And / or provide an encryption by using an encryption algorithm, the terminal may verify the electronic signature and / or the encryption scheme (and / or encryption algorithm). Means a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to the algorithm, and is provided to the server for registration of non-face-to-face financial transaction authentication information in the terminal. When the electronic signature is attached to the information (or data) to be performed and / or is encrypted and transmitted by at least one or more encryption methods (and / or encryption algorithms), the server verifies the electronic signature and / or the encryption method. A communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to (and / or an encryption algorithm).

According to another exemplary embodiment of the present invention, when a predetermined internet banking program is provided in the client terminal, the Internet banking-based secure channel may provide information to the terminal from the server according to a communication protocol defined in the internet banking program. Or a predetermined electronic signature to the data) and / or provided by encrypting with at least one encryption method (and / or encryption algorithm), the terminal confirms the electronic signature and / or the encryption method (and And / or a communication channel for decrypting the information (or data) with a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption algorithm), and also for registering the non-face-to-face financial transaction authentication information in the terminal. Attach certain electronic signatures to information (or data) to be provided to the server and / or Is encrypted with at least one encryption method (and / or encryption algorithm) and transmitted, the server verifies the digital signature and / or a predetermined decryption method (and / or encryption algorithm) corresponding to the encryption method (and / or encryption algorithm). / Or decryption algorithm) means a communication channel for decoding the information (or data).

According to the present invention, the security module is to perform an electronic signature attachment, and / or encryption, and / or protection function for the information (or data) by using the customer's authorized certificate mounted on the terminal It features.

When the secure channel for internet banking is connected, the server requests the terminal to perform an internet banking customer authentication procedure through the browser program (2135).

According to an exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (eg, ID / PW, customer number, etc., registered by the customer during the internet banking application process) through the terminal. ) Is input (or generated) and transmitted to the server, wherein the server comprises authenticating a customer connected through the terminal as an internet banking customer based on the customer authentication data, wherein the customer authentication data It is preferable that the digital signature and / or encrypted is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (for example, an ID / PW or customer number registered by the customer during the internet banking application process) through the terminal. And the like) are input (or generated) and transmitted to the authentication server, the authentication server authenticates the customer connected through the terminal as the Internet banking customer based on the customer authentication data, and provides the result to the server. In this case, it is preferable that the customer authentication data include public certificate-based authentication data, and the authentication server is a server for authenticating the public certificate-based authentication data.

Thereafter, the terminal inputs (or generates) predetermined customer authentication data according to the request, transmits the electronic signature and / or encryption to the server (and / or authentication server) through the security module, and performs internet banking customer authentication. Request (2140), the server (and / or authentication server) authenticates the customer connected through the terminal based on the customer authentication data received from the terminal as an Internet banking customer for non-face-to-face channel-based financial transactions (2145).

If the Internet banking customer authentication fails (2150), the server blocks the internet banking security channel for the terminal (2155), thereby preventing the Internet banking-based financial transaction through the terminal.

On the other hand, if the Internet banking customer authentication is successful (2150), the server converts the Internet banking security channel into an internet banking-based financial transaction channel in connection with the security module provided in the terminal (2160), where the Internet banking-based The financial transaction channel refers to a communication channel capable of transmitting and registering predetermined non-face-to-face financial transaction authentication information for financial transactions according to the present invention from the terminal to the server.

22 is a diagram illustrating a method for registering non-face-to-face financial transaction authentication information through an internet banking-based financial transaction channel according to an embodiment of the present invention.

In more detail, FIG. 22 illustrates that the information registration system shown in FIG. 17 is realized through an internet banking system among non-face-to-face channel-based banking systems. After accessing a banking server and performing a predetermined customer authentication procedure, if an internet banking-based financial transaction channel is connected between the client terminal and the internet banking server, the client terminal accesses the Internet through the internet banking-based financial transaction channel. When the predetermined non-face-to-face financial transaction authentication information for a financial transaction according to the present invention is transmitted to a banking server, the Internet banking server performs the cooperative processing of the received non-face-to-face financial transaction authentication information to store in a predetermined storage medium. As is related to the general knowledge in the art If the person having the present invention, the non-face-to-face financial transaction authentication information registration method using the Internet banking-based financial transaction channel between the client terminal and the Internet banking server may be inferred by referring to and / or modifying the present invention. Includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

That is, FIG. 22 shows the Internet banking-based financial transaction channel by accessing the Internet banking server through a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. In this connection, although the embodiment of the present invention illustrates a method of linking and processing non-face-to-face financial transaction authentication information transmitted from the client terminal through the browser program in the storage medium, a person having ordinary knowledge in the technical field to which the present invention belongs. If so, referring to and / or modifying an internet banking-based non-face-to-face financial transaction authentication information registration method using the browser program shown in FIG. 22, the client terminal and internet banking are based on a predetermined internet banking program mounted on the client terminal. Although it is possible to infer a method of registering non-face-to-face financial transaction authentication information based on various forms of Internet banking between servers, the present invention provides a method of registering non-face-to-face financial transaction authentication information provided based on the Internet banking program. And the invention is not limited thereby.

In addition, if a person of ordinary skill in the art to which the present invention pertains, refer to and / or modify the Internet banking-based non-face-to-face financial transaction authentication information registration method shown in Figure 22, in addition to the Internet banking system, through the window Face-to-face, non-face-to-face financial transaction credential registration method, or non-face-to-face for a face-to-face financial transaction credential registration for customer-owned accounts in other banking systems, such as telebanking systems and / or wireless banking systems and / or TV banking systems It is possible to infer a channel-based non-face-to-face financial transaction authentication information registration method, but the present invention includes the telebanking system and / or wireless banking system and / or TV banking system and / or future proposed non-face-to-face banking system. All types of non-face-to-face channel-based non-face-to-face financial transaction authentication information registration method, The technical configuration of the name is not limited to the case of the Internet banking shown in FIG.

In the following figure, the client terminal is referred to as "terminal" for convenience, and the Internet banking server corresponding to the information registration server 1700 is referred to as "server" for convenience.

Referring to FIG. 22, when the internet banking-based financial transaction channel between the terminal and the server is connected through the process illustrated in FIG. 21, the terminal may access the inter-internet for registration of non-face-to-face financial transaction authentication information for a customer-owned account. If the server requests internet banking-based non-face-to-face financial transaction authentication information registration to the server through a banking-based financial transaction channel (2200), the server corresponds to a web page corresponding to a predetermined information input interface for registering the non-face-to-face financial transaction authentication information. (2205) and transmits the generated (or extracted) web page to the terminal and outputs the generated (or extracted) web page through the internet banking-based financial transaction channel (2210).

According to an embodiment of the present invention, the information input interface may input (or non-face-to-face financial transaction authentication information including at least one non-face-to-face financial transaction password (or code) and password (or code) using condition information in the terminal (or And a predetermined password for verifying the validity of the Internet banking customer requesting registration of the non-face-to-face financial transaction authentication information and / or the non-face-to-face financial transaction authentication information. (E.g., account password) and / or security code (e.g., the security code printed on the security card issued to the customer during the Internet banking application process) and / or One Time Password (OTP) (e.g., internet banking application process (or After applying for internet banking) generated by an OTP authenticator (or OTP certification program) provided to a customer by a financial institution. It is preferable to further include an interface for inputting a one-time password).

In addition, the web page transmission and / or output process is preferably performed at least one or more times according to the non-face-to-face financial transaction authentication information registration procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) non-face-to-face financial transaction authentication information including at least one predetermined non-face-to-face financial transaction password (or code) and password (or code) using condition information through the information input interface ( 2215).

If the terminal enters (or selects) non-face-to-face financial transaction authentication information including at least one of the non-face-to-face financial transaction password (or code) and password (or code) using condition information through the information input interface (2220). In operation 2225, the terminal transmits the input (or selected) non-face-to-face financial transaction authentication information to the server through the financial transaction channel.

According to an embodiment of the present invention, transmitting the input (or selected) non-face-to-face financial transaction authentication information through the financial transaction channel to the server may include inputting (or selecting) the non-face-to-face finance through the information input interface. And transmitting the transaction authentication information to the server by digitally signing and / or encrypting it through a security module provided in the terminal.

Thereafter, the server verifies the validity of the non-face-to-face financial transaction authentication information by receiving and reading the non-face-to-face financial transaction authentication information through the financial transaction channel (2230).

According to an embodiment of the present invention, receiving and reading the non-face-to-face financial transaction authentication information through the financial transaction channel to confirm validity, decrypts the non-face-to-face financial transaction authentication information received from the terminal and / or the And the verification of the electronic signature attached to the non-face-to-face financial transaction authentication information.

In addition, the verification of the validity of the non-face-to-face financial transaction authentication information, preferably further comprises authenticating the password and / or security code and / or OTP included in the non-face-to-face financial transaction authentication information.

If the validity of the non-face-to-face financial transaction authentication information is not authenticated (2235), the server generates a web page including predetermined non-face-to-face financial transaction authentication information registration error information and transmits it to the terminal (2240), The non-face-to-face financial transaction authentication information registration procedure corresponding to the non-face-to-face financial transaction authentication information is not performed.

On the other hand, if the validity of the non-face-to-face financial transaction authentication information is authenticated (2235), the server performs the non-face-to-face financial transaction authentication information registration procedure corresponding to the non-face-to-face financial transaction authentication information, thereby verifying the non-face-to-face financial transaction authentication The non-face-to-face financial transaction password (or code) and password (or code) using condition information included in the information is processed in association with the predetermined storage medium (2245), and the predetermined non-face-to-face financial transaction authentication information registration history information is included. By generating a web page and transmitting to the terminal (2250), registration of the non-face-to-face financial transaction authentication information requested by the terminal is completed.

According to an embodiment of the present invention, the storage medium may be located in a DBMS provided on the non-face-to-face financial transaction system, and / or in a DBMS provided on a financial system linked to the Internet banking system. The present invention is not limited thereto.

23 is a block diagram of a non-face-to-face financial transaction system for processing non-face-to-face financial transactions through a non-face-to-face financial transaction password (or code) according to an embodiment of the present invention.

More specifically, FIG. 23 illustrates at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In an Internet banking system operated based on a Transmission Control Protocol / Internet Protocol (TCP / IP) -based network (for example, the Internet), a predetermined non-face-to-face finance registered through the information registration system shown in FIG. A method for implementing a non-face-to-face financial transaction system for processing non-face-to-face financial transactions without at least one or more authorized certificates and / or security codes in the Internet banking system based on a transaction password (or code), the present invention Those skilled in the art may refer to and / or modify this drawing 23 to provide the Internet banking system. In addition, certain non-face-to-face financial transaction systems (e.g., telebanking systems, and / or wireless banking systems, and / or TV banking systems, and / or home banking systems) may be registered through the information registration system shown in FIG. It is possible to infer various implementation methods for processing non-face-to-face financial transactions without at least one authorized certificate and / or security code based on the non-face-to-face financial transaction password (or code) of the present invention. It includes all, and is not limited to the embodiment shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). Internet banking system operating based on a TCP / IP-based network (for example, the Internet, etc.), to provide an Internet banking service to at least one client terminal having a predetermined web browser, and at least one client terminal Internet banking server 2300 is included, and the internet banking server 2300 is linked with a financial system 2360 that processes the financial business required to provide the Internet banking service through a predetermined interface 2355. do.

Those skilled in the art to which the present invention pertains can easily guess components omitted for convenience because they do not include the core technical matters of the present invention in the Internet banking system shown in FIG. The present invention is not limited to the omitted elements.

That is, FIG. 23 illustrates a non-face-to-face financial transaction between the client terminal and the Internet banking server based on a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. Although the method of implementing the Internet banking system for processing the present invention, those of ordinary skill in the art, refer to the Internet banking-based financial transaction channel connection method using the browser program shown in Figure 23 and And / or may modify an Internet banking system configuration for processing non-face-to-face financial transactions between the client terminal and the Internet banking server based on a predetermined internet banking program mounted on the client terminal. Internet banking pro Including Internet banking system provided by the RAM-based, and to which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the Internet banking system by referring to and / or modifying the Internet banking system configuration shown in Figure 23, in addition to the non-face-to-face channel-based financial transactions according to the present invention Other banking systems, such as a telebanking system and / or a wireless banking system and / or a TV banking system and / or a home banking system, may be inferred, but the present invention is directed to the telebanking system and / or wireless banking system and / or Or all types of non-face-to-face channel banking systems, including TV banking systems and / or home banking systems and / or future non-face-to-face channel banking systems, wherein the technical configuration of the present invention is shown in FIG. It is by no means limited to.

The client terminal may include a desktop having at least one web browser for accessing the internet banking server 2300 and receiving a browsing-based wired web service based on a TCP / IP-based wired communication function and the wired communication function ( Desktop) characterized in that it comprises a wired terminal (1745) including at least one computer and / or notebook (Notebook), the Internet banking server through a predetermined network means including the TCP / IP-based Internet 2300 and the communication channel for internet banking is connected.

The financial system 2360 is a computer system provided to a predetermined financial institution to open at least one financial account to at least one customer and to process a financial transaction based on the financial account. Accounting system 2322 for processing window services such as credit or receiving or trust or foreign exchange incurred; information system 2363 for processing of headquarters operations, branch office information support and customer information management; Provides a variety of electronic financial services (e.g., internet banking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), other exchanges, call centers, financial settlements, etc. The foreign equivalent 2361 and the middleware platform corresponding to the interfacing between components in the financial system are provided. At least for storing and managing the face module 2365 and predetermined information (eg, ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. A database management system (DBMS) 264 including one or more databases, comprising the intention of the person skilled in the art and / or the type of each financial institution (eg, commercial bank, savings bank, trust bank) and the purpose of the financial system. And according to the features, it is possible to further include at least one or more components, such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), in the technical field to which the present invention belongs Those skilled in the art will clearly understand the detailed technical details of the financial system 2360, and thus the detailed description thereof will be omitted for convenience. Thereby, this invention is not limited.

According to an embodiment of the present invention, the Internet banking server 2300 interworks with the financial system 2360 through the external system 2361, and for this purpose, the external system 2361 has a predetermined interface means 2355. It is preferable to include a component for interworking with the Internet banking server 2300 through.

The internet banking server 2300 is a database for storing web operation data including at least one web page source and / or digital content for providing a predetermined web service to at least one client terminal, and / or the financial system. A data server provided with a DBMS 2320 including a database for storing Internet banking information required to provide a predetermined Internet banking service in association with 2360, or the DBMS 2320 according to an implementation method; It is characterized in that the interworking, whereby a predetermined Internet banking service is provided to at least one or more of the client terminal.

According to an embodiment of the present invention, the Internet banking information may be configured to authenticate a customer corresponding to the client terminal when at least one or more client terminals access and log in to the Internet banking server 2300, and / or the customer Authenticate the financial transaction customer during at least one financial transaction through a banking server 2300, and / or Authenticate a customer who subscribes to the financial product when the customer subscribes at least one financial product to the internet banking server 2300. And the banking element information for processing a financial transaction corresponding to the financial transaction request in connection with the financial system 2360 when the financial transaction request is made from the customer through the client terminal. Preferably, at least as needed for internet banking, according to the intention of the skilled person One or more pieces of information may be further included, but this is omitted for convenience in FIG. 23.

Referring to FIG. 23 according to the embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) use condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information may be included in the customer authentication information and stored in the DBMS 2320.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be provided in a separate database in addition to the customer authentication information, thereby limiting the present invention. Not.

For example, the non-face-to-face financial transaction password (or code) and password (or code) using condition information registered through the information registration system shown in FIG. 17 is not the DBMS 2320 provided on the Internet banking system. It may be provided in the DBMS (2364) on the financial system, by which the present invention is not limited.

Referring to FIG. 23, the Internet banking server 2300 may connect to and manage a Hyper-Text Transfer Protocol (HTTP) based communication channel for providing a predetermined Internet banking service to at least one or more client terminals. 2305, a web page operating unit 2315 for operating a web page to be provided to at least one or more client terminals in cooperation with the web interface unit 2305 and the DBMS 2320, and the web page operating unit 2315. ) A UI processing unit 2310 for generating a user interface (UI) screen for providing a predetermined Internet banking service to at least one client terminal in cooperation with the at least one client terminal, and the DBMS (operating with the UI processing unit 2310). 2320 extracts predetermined content for providing the Internet banking service, or stores the content to be stored in the DBMS 2320 from the client terminal. And a content management unit 2325 for receiving definition contents, and a communication channel for processing Internet banking based on HTTP between the client terminal and the Internet banking server 2300 by the function configuration. The user interface is implemented.

In addition, the internet banking server 2300 interoperates with the web page operation unit 2315 through the UI processing unit 2310 based on the customer authentication information of the internet banking information to the at least one client terminal screen. Or a customer authentication unit 2330 provided with at least one customer authentication information based on the interface screen.

In addition, the internet banking server 2300 is connected to the web page operation unit 2315 through the UI processing unit 2310 based on the banking element information of the Internet banking information to the financial transaction-related interface screen to at least one client terminal Or a banking processor 2335 provided with at least one financial transaction-related information based on the interface screen.

In addition, the Internet banking server 2300 has a ledger processing unit 2340 that performs a ledger processing procedure corresponding to the financial transaction requested by the customer in cooperation with the financial system 2360 through a predetermined interface means 2355. The ledger processing unit 2340 may be connected to the external system 2361 of the financial system 2360 through the interface unit 2355.

The customer authentication information stored in the DBMS 2320 may include at least one of ID / PW information and personal information (eg, name, resident registration number, address, contact information, etc.) of a customer accessing the Internet banking server 2300 through the client terminal. It is preferable to include the member information included above, wherein the customer authentication unit 2330 requests the ID / PW information of the customer to the client terminal in conjunction with the UI processing unit 2310, the client terminal And receiving the ID / PW information from the ID, and comparing the received ID / PW information with ID / PW information included in the member information, thereby authenticating the customer.

According to an embodiment of the present invention, the ID / PW information may be provided to the Internet banking server 2300 according to a conventional ID / PW transmission / reception procedure, but the ID / PW information may be provided to provide a more advanced security function. The client terminal is encrypted and received through at least one or more of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. Preferably, for this purpose, the customer authentication unit 2330 preferably further includes a function configuration for decrypting the ID / PW information.

In addition, the customer authentication information stored in the DBMS 2320 may be used for certification authority information (eg, KFTC) and certificate server information, and / or registration of the authentication certificate, which issued a predetermined certificate to a customer connected through the client terminal. Institutional information (eg, if the accredited certificate is registered through the company, the information of the party, if the accredited certificate is registered through the other party, etc.), and / or certificate information issued to the customer by the certification body further. Preferably, the customer authentication unit 2330 requests a certificate-based customer authentication through an authentication certificate registered by the registrar to the certificate server of the certification authority, and receives the result of the customer authentication from the certificate server. By receiving, characterized in that for authenticating the customer.

According to an embodiment of the present invention, the customer authentication unit 2330 provides the communication session information and the certificate information connected to the client terminal to the authentication server of the certification authority, and the authentication server based on the communication session information. After performing a customer authentication procedure corresponding to the certificate information to the client terminal, it is preferable to provide the result to the customer authentication unit 2330.

In addition, the customer authentication information stored in the DBMS 2320 is made of a copy of the authentication certificate of the customer accessing the Internet banking server 2300 through the client terminal, and / or the predetermined authentication certificate to the customer It is preferable to include the directory connection information of the issuing certification authority, wherein the customer authentication unit 2330 is based on the certificate to the client terminal in conjunction with the authentication server of the certification authority that issued a predetermined certificate to the customer Requesting customer information, receiving the certificate-based customer information from the client terminal, and authenticating the customer by authenticating the certificate-based customer information through a copy of the certificate and / or a directory of a certification authority. .

According to an exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 2330 or a predetermined random number generated by the client terminal. Encrypting the random number through the at least one encryption method of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method through the public certificate To provide to the customer authentication unit (2330) (for example, if the random number is generated in the client terminal further comprises a random number in the form of a plain text), the customer authentication unit (2330) and a copy of the authentication certificate of the customer and / Or by comparing and decrypting an encrypted random number based on the certificate information of the customer extracted from the directory, and / Alternatively, the customer may be authenticated by encrypting and comparing the random number in the plain text form (eg, the random number generated by the customer authentication unit 2330 and / or the random number generated by the client terminal).

According to another embodiment of the present invention, the certificate-based customer information is stored information previously stored in the client terminal (for example, information stored in the storage device of the client terminal in the Internet banking server 2300, and / or the Information (or system information) previously stored in the client terminal, and / or storage information (eg, IC card (and / or IC chip) read out from the IC card (and / or IC chip) interoperating with the client terminal. A serial number, and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuing authority), in which case the client terminal uses the certificate. Encrypting the stored information in at least one of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. Equation is encrypted through a formula provided to the customer authentication unit 2330, and encrypted storage based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory in the customer authentication unit 2330 It is desirable to authenticate the customer by decrypting and comparing the information.

According to another exemplary embodiment of the present invention, the certificate-based customer information is input information input through an input means provided in the client terminal (for example, information input through a key input device provided in the client terminal, and And / or information input through an input device (for example, a local area communication device, etc.) other than a key input device provided in the client terminal, in which case the client terminal symmetrics the input information through the public certificate. (Or a secret key) encrypts and / or provides a public key encryption method, and / or an electronic envelope encryption method, and / or an encryption method using at least one or more of an encryption method provided to the customer authentication unit 2330. And, in the customer authentication unit 2330 is a copy of the customer's official certificate and / or extracted from the directory of the customer By intercomparison decrypts the encrypted input information based on the certificate information, it is desirable to authenticate the customer.

In addition, the customer authentication information stored in the DBMS 2320 may be OTP generation information for generating an OTP authentication code matching the OTP code generated through the OTP (One Time Password) authenticator provided to the customer, When the customer authentication unit 2330 interoperates with the UI processing unit 2310, requests a predetermined OTP code from the client terminal, receives the OTP code from the client terminal, and based on the OTP generation information. Generate the OTP authentication code, and by comparing the received OTP code and the generated OTP authentication code, characterized in that to authenticate the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method in the client terminal to provide a more advanced security function And / or is encrypted and received through at least one encryption method among key exchange encryption methods, and for this purpose, the customer authentication unit 2330 preferably further includes a function configuration for decrypting the OTP code. Do.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 2320. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the client terminal to the Internet banking server When a non-face-to-face financial transaction is requested using a password (or code), the customer authentication unit 2330 may check whether the non-face-to-face financial transaction requested from the client terminal satisfies the password (or code) using condition information. do.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. In this case, the customer authentication unit 2330 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code). It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction through (or code) is performed more than once, the customer authentication unit 2330 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while If the non-face-to-face financial transaction using the face-to-face financial transaction password (or code) has never been performed, the customer authentication unit 2330 processes the face-to-face financial transaction through the face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the non-face-to-face financial transaction is requested before. When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the customer authentication unit 2330 performs the face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid, while the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 2330 performs the face-to-face finance. Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the customer authentication unit 2330 checks whether the non-face-to-face financial transaction amount (or code) exceeds the limit amount, thereby making the non-face-to-face financial transaction password (or code) face-to-face. It is desirable to verify that financial transactions are currently available.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) use condition information, the customer authentication unit 2330 may perform the non-face-to-face finance. The non-face-to-face financial transaction through the transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 2330 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 2330 is the non-face-to-face financial transaction password (or code) Verify that the non-face-to-face financial transaction type through the non-face-to-face financial transaction (or code) is currently available by matching the financial transaction type included in the password (or code) terms and conditions. It is preferable.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the customer authentication unit 2330 determines The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the type of non-face-to-face financial transaction through the face-to-face financial transaction password (or code) When matched with an included financial transaction type, the customer authentication unit 2330 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 2330 is linked with the UI processing unit 2310 to the client terminal. Request the financial transaction password (or code), receive the financial transaction password (or code) from the client terminal, and receive the financial transaction password (or code) and the financial transaction password stored in the DBMS 2320. By comparing the (or code), the validity for the customer and / or the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer characterized in that the authentication.

When at least one financial transaction is requested from the client terminal, the banking processor 2335 provides a financial transaction request information input interface screen corresponding to the requested financial transaction to the client terminal in cooperation with the UI processor 2310. When predetermined financial transaction request information is input (or selected) from the client terminal through the financial transaction request information input interface screen, the predetermined financial transaction request information corresponding to the financial transaction request information is referred to with reference to the banking element information. Generate (or extract) financial transaction information and provide it to the ledger processing unit 2340.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 2320. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the client terminal to the Internet banking server When a non-face-to-face financial transaction is requested using a password (or code), the banking processor 2335 may be linked to the customer authentication unit 2330 to display the non-face-to-face financial transaction password (or code) on the financial transaction request information input interface screen. It further comprises a predetermined user interface for inputting to the client terminal Is preferred, and this response, the client terminal is preferably sent on to the predetermined financial transaction request information further includes a non-face-to-face financial transaction password (or code) to the Internet banking server.

In receiving the predetermined financial transaction request information from the client terminal, if the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processor 2335 is the customer authentication unit. It is preferable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with (2330), whereby the confidentiality (non-face-to-face) financial transaction (non-face-to-face financial transaction password (or code)), Authentication, Integrity and Nonrepudiation are secured.

In receiving the predetermined financial transaction request information from the client terminal, when following the conventional wireless banking procedure, the banking processor 2335 is linked with the customer authentication unit 2330 through the at least one customer authentication method through the financial It is preferable to authenticate the customer who requested the transaction, thereby making sure of the confidentiality and authentication of the customer who requested the financial transaction through the client terminal (or a customer who has entered (or selected) and transmitted the financial transaction request information). ), Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 2335 in the client terminal to secure the confidentiality, authentication, integrity and non-repudiation of at least one or more financial transaction request information transmitted from the client terminal The electronic signature of the customer is attached to the financial transaction request information, and the financial transaction request information to which the electronic signature is attached is preferably encrypted and transmitted using a public key encryption method according to the public key infrastructure. In this case, the banking processor ( 2335) preferably receives the financial transaction request information from the client terminal, decrypts it with a public key decryption method according to the public key infrastructure, and confirms the electronic signature, thereby ensuring confidentiality of the financial transaction request information. , Authentication, integrity and nonrepudiation are ensured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 2335 is to secure the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the client terminal for at least one or more financial transactions, Preferably, the client terminal encrypts and transmits the financial transaction request information in an electronic envelope method. In this case, the banking processor 2335 preferably receives the financial transaction request information from the client terminal and decrypts the financial transaction request information in an electronic envelope method. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

The ledger processing unit 2340 may be linked with the financial system 2360 through a predetermined interface means 2355, and predetermined financial transaction information may be generated (or extracted) by the banking processing unit 2335. In this case, at least one ledger information to be extracted from the ledger on the financial system 2360 corresponding to the financial transaction information is identified, and the identified from the ledger on the financial system 2360 through the interface means 2355. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 2360 in response to the financial transaction information, and through the interface means 2355 2360) record the generated (or extracted) ledger record information in the ledger.

For example, the financial transaction requested from the client terminal is an account inquiry transaction for the last month, and the banking processing unit 2335 generates financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry (or Is extracted), the ledger processing unit 2340 is linked to the account ledger (and / or the customer ledger) on the financial system 2360 through the interface means 2355 based on the financial transaction information for the account inquiry The transaction history of the account is extracted from the transaction history associated with the account ledger) and is provided to the banking processor 2335.

24A, 24B, and 24C illustrate a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to one embodiment of the present invention.

More specifically, Figures 24A, 24B and 24C illustrate at least one non-face-to-face financial transaction system (e.g., an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or Or a home banking system), wherein the client terminal uses a non-face-to-face financial transaction password (or code) through a TCP / IP-based network (for example, the Internet). When a transaction is requested, the non-face-to-face financial transaction password (or code) using the non-face-to-face financial transaction password (or code) and password (or code) usage condition information registered through the information registration system shown in FIG. Or a method for performing an internet banking procedure through a code), and the general knowledge in the technical field to which the present invention belongs. If the pendulum is a non-face-to-face financial transaction process through a non-face-to-face financial transaction password (or code) implemented through the Internet banking system shown in FIG. 24 by referring to and / or modifying the drawings 24a, 24b, and 24c. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods shown in FIGS. 24A, 24B, and 24C.

That is, FIGS. 24A, 24B, and 24C are registered in the client terminal through the information registration system shown in FIG. 17 when accessing the Internet banking server through a predetermined browser program provided in the client terminal. Although a non-face-to-face financial transaction password (or code) and a method of processing non-face-to-face financial transactions based on the Internet banking system using the password (or code) usage condition information are shown, it is common in the art to which the present invention belongs. Those skilled in the art can refer to and / or modify an Internet banking-based financial transaction channel connection method using the browser program shown in FIGS. 24A, 24B, and 24C, and modify a predetermined Internet banking program mounted on the client terminal. On the basis of the information registration system shown in FIG. By using the non-face-to-face financial transaction password (or code) and password (or code) terms and conditions information registered through the system can be inferred how to implement the non-face-to-face financial transaction based on the Internet banking system. The present invention includes Internet banking-based financial transactions provided based on the Internet banking program, whereby the present invention is not limited thereto.

Also, those skilled in the art may refer to and / or modify the Internet banking based financial transaction method shown in FIGS. 24A, 24B, and 24C, in addition to the Internet banking system, to provide telebanking. It is possible to infer a non-face-to-face financial transaction method through another banking system such as a system and / or a wireless banking system and / or a TV banking system and / or a home banking system. It includes all types of non-face-to-face channel based financial transactions, including systems and / or TV banking systems and / or home banking systems and / or non-face-to-face channel banking systems proposed in the future. It is by no means limited to the case of Internet banking shown in FIGS. 24B and 24C.

In the following Figures 24a, 24b and 24c, the client terminal shown in Figure 23 is referred to as "terminal" for convenience, and the Internet banking server is referred to as "server" for convenience.

24A, 24B, and 24C, when the terminal executes a predetermined browser program and accesses the server through the TCP / IP-based network (2400), the server connects the terminal and the server through the browser. (2405), wherein the communication channel is generated by the server in response to a request of a browser program provided to the client terminal (or extracted) and transmitted to the client terminal. This means that a predetermined communication session is allocated so that a browser program included in a client terminal can receive at least one or more information (or data) input (or selected) based on a predetermined user interface included in the web page. .

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server may be configured with the Internet banking program and at least one or more information based on a predetermined communication protocol defined in the internet banking program. Or a communication channel for transmitting / receiving data).

When the communication channel is connected as described above, the server is the non-face-to-face financial transactions in the non-face-to-face financial transaction password (or code) in accordance with the present invention and the non-face-to-face financial transactions according to the conventional Internet banking-based non-face-to-face financial transactions A web page including a user interface for selecting a non-face-to-face financial transaction method is generated (or extracted) and provided to the terminal (2410), and correspondingly, the terminal provides a user interface included in the web page. Through the non-face-to-face financial transaction (non-face-to-face) financial transaction password (or code) according to the present invention and non-face-to-face financial transactions based on conventional Internet banking-based non-face-to-face financial transactions (2415) .

If the terminal does not select the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention through the user interface, the non-face-to-face financial transaction method according to the conventional Internet banking-based non-face-to-face financial transaction is selected 2420, the terminal performs the conventional internet banking based non-face-to-face financial transaction procedure shown in FIG. 25 and / or FIG.

On the other hand, if the non-face-to-face financial transaction method (2420) through the non-face-to-face financial transaction password (or code) according to the present invention is selected in the terminal (2420), the terminal through the non-face to face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (2425), and the server uses the password (or code) registered through the information registration system shown in FIG. (Or code) checks the validity of the number of times of non-face-to-face financial transactions (2430).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the number of times of non-face-to-face financial transactions using the non-face-to-face financial transaction password (or code) is not authenticated (2435), the server generates a web page including predetermined financial transaction error information to the terminal. It transmits (2440), does not perform the Internet banking-based non-face-to-face financial transaction process.

On the other hand, if the validity of the number of times of non-face-to-face financial transactions using the non-face-to-face financial transaction password (or code) is authenticated (2435), the server selects a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). A web page including a predetermined financial transaction type selection interface is generated and provided to the terminal (2445). In response, the terminal sends the non-face-to-face financial transaction password (or code) through the financial transaction type selection interface. The financial transaction type selection information through the input (or selection) (2450).

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (2455), the terminal transmits the financial transaction type selection information to the server (2460), and the server In step 2465, the validity of the non-face-to-face financial transaction type through the password (or code) using the password (or code) registered through the information registration system shown in FIG. 17 is verified.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to check whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). Or a non-face-to-face financial transaction through code) as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If matched with the server, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (2470), the server generates a web page including predetermined financial transaction error information and transmits it to the terminal. (2472), the Internet banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (2470), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). Generating (or extracting) a web page including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) at the terminal (2474); The web page including the transmission is output to the terminal (2476).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined internet banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferred to include a user interface for entering (or selecting) a non-face-to-face financial transaction password (or code) for validating the transaction.

In addition, the web page transmission and / or output process is preferably performed at least once in accordance with the Internet banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal transmits a predetermined non-face-to-face financial transaction password (or code) for authenticating the predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and the non-face-to-face financial transaction through the financial transaction interface. ) (Or 2478).

If the terminal enters (or selects) a non-face-to-face financial transaction password (or code) through the financial transaction interface at the terminal (2480), the terminal receives the input (or selected) financial transaction request information. And a non-face-to-face financial transaction password (or code) is transmitted to the server (2482), and the server performs the non-face-to-face financial transaction through a password (or code) use condition registered through the information registration system shown in FIG. The validity of the non-face-to-face financial transaction amount through the password (or code) is verified (2484).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). The server checks whether the non-face-to-face financial transaction password (or code) exceeds the limit by checking whether the non-face-to-face financial transaction password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). The non-face-to-face financial transaction through the code) is invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated (2486), the server may include predetermined financial transaction error information. A web page is generated and transmitted to the terminal (2488), and the internet banking-based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) use condition (2486), the server receives the received non-face-to-face financial transaction password (or Code) (2490).

According to an embodiment of the present invention, the validation process for the non-face-to-face financial transaction password (or code) is provided on the non-face-to-face financial transaction password (or code) received from the terminal and on the Internet banking system. It is preferable to include the process of comparing the non-face-to-face financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (2492), the server generates a web page including predetermined financial transaction error information and transmits it to the terminal (2488), and the Internet banking Do not follow a non-face-to-face financial transaction process.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (2492), the server performs a financial transaction procedure corresponding to the financial transaction request information (2494).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the Internet banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If a financial transaction corresponding to the financial transaction request information fails (eg, an error occurs during the financial transaction procedure) (2496), the server generates a web page including predetermined financial transaction error information. In step 2488, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (2496), the server generates a web page including the predetermined financial transaction history information and transmits it to the terminal (2498), the financial transaction requested from the terminal To complete.

25 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to an embodiment of the present invention.

More specifically, FIG. 25 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the Internet banking system shown in FIG. 23, when the client terminal requests a non-face-to-face financial transaction according to a conventional internet banking procedure through a TCP / IP-based network (for example, the Internet), the Internet banking server conventionally An embodiment of the present invention relates to a method for connecting an internet banking-based financial transaction channel between the client terminal and an internet banking server by performing a defined customer authentication procedure. By referring to and / or modifying the non-face-to-face gold between the client terminal and the Internet banking server Various implementation methods for connecting an internet banking-based financial transaction channel for a fusion transaction may be inferred, but the present invention includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

That is, FIG. 25 is based on the browser program when accessing the Internet banking server through a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. Although an implementation method of connecting an internet banking-based financial transaction channel for a non-face-to-face financial transaction between the client terminal and the internet banking server is illustrated, a person having ordinary knowledge in the technical field to which the present invention pertains is illustrated in FIG. 25. Internet banking based non-face-to-face financial transactions between the client terminal and the Internet banking server based on a predetermined internet banking program mounted on the client terminal by referring to and / or modifying an internet banking-based financial transaction channel connection method using a browser program. Banking infrastructure It would be possible to infer an implementation method of linking a financial transaction channel, but the present invention includes provided internet banking based financial transactions based on the internet banking program, whereby the present invention is not limited thereto.

Also, those skilled in the art may refer to and / or modify the Internet banking-based financial transaction channel connection method shown in FIG. 25, in addition to the internet banking system, a telebanking system and / or Other banking systems, such as wireless banking systems and / or TV banking systems and / or home banking systems, may infer an implementation method for connecting non-face-to-face channel-based financial trading channels for non-face-to-face financial transactions. The present invention includes all kinds of non-face-to-face channel-based financial transactions, including telebanking systems and / or wireless banking systems and / or TV banking systems and / or home banking systems and / or future non-face-to-face banking systems. Is not limited to the case of the Internet banking shown in FIG.

In the following figure 25, the client terminal is referred to as " terminal " for convenience, and the Internet banking server is referred to as " server " for convenience.

Referring to FIG. 25, when the non-face-to-face financial transaction is performed according to a conventional internet banking procedure in the process illustrated in FIG. 24, the server may generate a predetermined web page (or extracted) for providing to the terminal. In the Internet banking main page, a predetermined security module for internet banking is mounted on the terminal, and / or a predetermined script for checking whether to update the security module is provided to the terminal, It is determined whether a predetermined security module for internet banking is installed in the terminal and / or the security module is updated (2510).

According to another exemplary embodiment of the present invention, when the client terminal is provided with a predetermined internet banking program, the server requests the Internet banking program for version information and / or last update date information, and the like. / Or a security module associated with the Internet banking program) can be updated.

If a predetermined security module is to be installed and / or updated in the terminal (2515), the server transmits the latest version of the security module for internet banking to the terminal according to a remote program installation procedure defined in the browser program. And mount and / or update (2520).

If the terminal does not need to install and / or update the latest version of the security module for internet banking (2525), or if the terminal does not need to load and / or update the security module for internet banking (2515), the server may By activating the security module for Internet banking mounted on the terminal, to connect the security channel for Internet banking (or switch the communication channel between the terminal and the server to a secure channel) between the terminal and the server (2530), where the security for Internet banking A channel is attached to a predetermined digital signature and / or at least one encryption method (or data) of information (or data) required for security among information (or data) included in a web page to be provided from the server to the terminal. And / or provide an encryption by using an encryption algorithm, the terminal may verify the electronic signature and / or the encryption scheme (and / or encryption algorithm). Means a communication channel for decoding the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to the rhythm), and the information to be provided from the terminal to the server for non-face-to-face financial transactions ( Or a predetermined electronic signature to the data) and / or encrypted and transmitted with at least one or more encryption schemes (and / or encryption algorithms), the server verifies the digital signature and / or the encryption scheme (and / or Or a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption algorithm).

According to another exemplary embodiment of the present invention, when a predetermined internet banking program is provided in the client terminal, the Internet banking-based secure channel may provide information to the terminal from the server according to a communication protocol defined in the internet banking program. Or a predetermined digital signature attached to the data) and / or provided by encrypting with at least one encryption method (and / or encryption algorithm), the terminal confirms the electronic signature and / or the encryption method (and / or Or a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption algorithm), and also provided by the terminal to the server for non-face-to-face financial transactions. Attach a predetermined electronic signature to information (or data) to be performed and / or at least one When encrypted by the above encryption method (and / or encryption algorithm) and transmitted, the server confirms the digital signature and / or a predetermined decryption method (and / or decryption) corresponding to the encryption method (and / or encryption algorithm). Algorithm) means a communication channel to decode the information (or data).

According to the present invention, the security module is to perform an electronic signature attachment, and / or encryption, and / or protection function for the information (or data) by using the customer's authorized certificate mounted on the terminal It features.

When the secure channel for internet banking is connected, the server requests the terminal to perform an internet banking customer authentication procedure through the browser program (2535).

According to an exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (eg, ID / PW, customer number, etc., registered by the customer during the internet banking application process) through the terminal. ) Is input (or generated) and transmitted to the server, wherein the server comprises authenticating a customer connected through the terminal as an internet banking customer based on the customer authentication data, wherein the customer authentication data It is preferable that the digital signature and / or encrypted is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include predetermined Internet banking-based customer authentication data (for example, an ID / PW or customer number registered by the customer during the internet banking application process) through the terminal. And the like) are input (or generated) and transmitted to the authentication server, the authentication server authenticates the customer connected through the terminal as the Internet banking customer based on the customer authentication data, and provides the result to the server. In this case, it is preferable that the customer authentication data include public certificate-based authentication data, and the authentication server is a server for authenticating the public certificate-based authentication data.

Thereafter, the terminal inputs (or generates) predetermined customer authentication data according to the request, transmits the electronic signature and / or encryption to the server (and / or authentication server) through the security module, and performs internet banking customer authentication. Request (2540), the server (and / or authentication server) authenticates the customer connected through the terminal as an Internet banking customer for non-face-to-face financial transactions based on the customer authentication data received from the terminal. (2545).

If the Internet banking customer authentication fails (2550), the server blocks the Internet banking security channel for the terminal (2555), so that the Internet banking-based financial transaction is not made through the terminal.

On the other hand, if the Internet banking customer authentication is successful (2550), the server converts the Internet banking security channel into an internet banking-based financial transaction channel in connection with the security module provided in the terminal (2560), where the Internet banking-based The financial transaction channel refers to at least one financial transaction request requested from the terminal, and the server accesses the ledger on the financial system to perform the requested financial transaction (eg, account inquiry, account transfer, bill payment, .. Communication channel).

26 is a diagram illustrating a conventional non-face-to-face financial transaction method according to an embodiment of the present invention.

More specifically, FIG. 26 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the Internet banking system shown in FIG. 23, the client terminal accesses the Internet banking server through the process shown in FIG. 25, performs a conventional customer authentication procedure, and thereafter, between the client terminal and the Internet banking server. When an internet banking-based financial transaction channel is connected, the client terminal requests a non-face-to-face financial transaction from the client terminal through the internet banking-based financial transaction channel, and processes the requested financial transaction from the internet banking server. The result is the client through the Internet banking-based financial transaction channel As the present invention relates to an embodiment of the present invention, those of ordinary skill in the art to which the present invention pertains can refer to and / or modify this drawing 26 to establish an internet banking-based financial transaction channel between the client terminal and the internet banking server. Although various financial transaction methods may be inferred, the present invention includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

That is, FIG. 26 illustrates the Internet banking-based financial transaction channel by accessing the Internet banking server through a predetermined browser program (eg, Microsoft Internet Explorer, and / or Netscape's Netscape Navigator, etc.) included in the client terminal. In this connection, although the implementation method for processing the financial transaction requested from the client terminal through the browser program is illustrated, those of ordinary skill in the art to which the present invention belongs, the browser program shown in FIG. Internet banking-based financial transaction method of various forms that is made between the client terminal and the Internet banking server based on a predetermined internet banking program mounted on the client terminal by referring to and / or modifying the internet banking-based financial transaction method. Would be able to infer, the present invention includes an Internet banking based financial transaction provided based on the Internet banking program, to which the present invention is not limited.

Also, those skilled in the art to which the present invention pertains may refer to, and / or modify, the Internet banking-based financial transaction method shown in FIG. 26, in addition to the internet banking system, a telebanking system and / or a wireless banking system. Other banking systems, such as systems and / or TV banking systems, may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention is directed to the telebanking system and / or wireless banking system and / or TV. It includes all types of non-face-to-face channel-based financial transactions including banking system and / or non-face-to-face channel banking system proposed in the future, the technical configuration of the present invention is limited to the case of the Internet banking shown in FIG. Never.

In the following figure, the client terminal is referred to as " terminal " for convenience, and the Internet banking server is referred to as " server " for convenience.

Referring to FIG. 26, when the internet banking-based financial transaction channel between the terminal and the server is connected through the process illustrated in FIG. 25, the terminal may be connected to the internet banking-based financial transaction channel for non-face-to-face financial transactions. Upon requesting an internet banking-based financial transaction from a server (2600), the server generates (or extracts) a web page including a predetermined financial transaction interface corresponding to the requested non-face-to-face financial transaction (2610), and the internet. The generated (or extracted) web page is transmitted to the terminal and output through the banking-based financial transaction channel (2615).

According to an embodiment of the present invention, the financial transaction interface may perform predetermined financial transaction request information for processing a predetermined internet banking based financial transaction based on the selected (or input) account information, and / or the financial transaction. In order to verify the validity of the requesting internet banking customer, a predetermined password (e.g. account password) and / or security code (e.g., a security code printed on the security card issued to the customer during the internet banking application process) and / or Enter (or select) one time password (OTP) (e.g., a one-time password generated through an OTP authenticator (or OTP certification program) provided to a customer by a financial institution during the internet banking application process (or after an internet banking application). It is preferable to further include a user interface.

In addition, the web page transmission and / or output process is preferably performed at least once in accordance with the Internet banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) financial transaction request information including at least one for each Internet banking-based financial transaction through the financial transaction interface (2620).

If the terminal receives (or selects) the financial transaction request information through the financial transaction interface (2625), the terminal transmits the input (or selected) financial transaction request information to the server through the financial transaction channel. Send (2630).

According to an embodiment of the present invention, transmitting the financial transaction request information (or selected) inputted through the financial transaction channel to the server may include the financial transaction request information input (or selected) through the financial transaction interface. It comprises the electronic signature and / or encryption through the security module provided in the terminal and transmitting to the server.

Thereafter, the server verifies the validity of the financial transaction request information by receiving and reading the financial transaction request information through the financial transaction channel (2635).

According to an embodiment of the present invention, receiving and reading the financial transaction request information through the financial transaction channel to confirm validity may decode the financial transaction request information received from the terminal and / or the financial transaction request information. This includes checking the digital signature attached to it.

In addition, the verification of the validity of the financial transaction request information, preferably further comprises the authentication of the password and / or security code and / or OTP included in the financial transaction request information.

If the validity of the financial transaction request information is not authenticated (2640), the server generates a web page including predetermined financial transaction error information and transmits the web page to the terminal (2645), corresponding to the financial transaction request information. Do not perform financial transaction procedures.

On the other hand, if the validity of the financial transaction request information is authenticated (2640), the server performs a financial transaction procedure corresponding to the financial transaction request information (2650).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the Internet banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If the financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs while performing the financial transaction procedure) (2655), the server generates a web page including predetermined financial transaction error information. In operation 2645, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (2655), the server generates a web page including the predetermined financial transaction history information and transmits it to the terminal (2660), thereby requesting the financial transaction from the terminal. To complete.

27 is a block diagram of a non-face-to-face financial transaction system for processing a face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, Figure 27 shows at least one non-face-to-face financial transaction system (e.g., an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In a telebanking system operating based on a voice calling network including a public switched telephone network (PSTN) and / or a mobile communication network, a predetermined ratio registered through the information registration system shown in FIG. An embodiment of the present invention relates to a non-face-to-face financial transaction system configuration for processing non-face-to-face financial transactions without at least one authorized certificate and / or security code in the Internet banking system based on a face-to-face financial transaction password (or code). Persons of ordinary skill in the art may refer to and / or modify this drawing 27 to perform the telebanking. Registration in a non-face-to-face financial transaction system (e.g., an Internet banking system and / or a wireless banking system, and / or a TV banking system, and / or a home banking system) other than the system through the information registration system shown in FIG. It is possible to infer various implementation methods for processing non-face-to-face financial transactions without at least one or more accredited certificates and / or security codes based on a predetermined non-face-to-face financial transaction password (or code). It includes all implementation methods, and is not limited to the implementation method shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). ), A telebanking system operating based on a voice call network including a public switched telephone network (PSTN) and / or a mobile communication network, has a predetermined voice call function and a dual tone multi-frequency signal (DTMF). At least one call terminal having a processing function and a telebanking server 2700 which provides a telebanking service to at least one of the call terminals, wherein the telebanking server 2700 includes a predetermined interface means ( 2755 is associated with a financial system 2760 that processes the financial affairs necessary to provide the telebanking service.

Those skilled in the art to which the present invention pertains can easily guess the omitted components for convenience because they do not include the core technical matters of the present invention in the telebanking system shown in FIG. The present invention is not limited to the components omitted.

That is, FIG. 27 illustrates a method of implementing a telebanking system for processing non-face-to-face financial transactions between the call terminal and the telebanking server based on the voice call function and the DTMF signal processing function provided in the call terminal. Those skilled in the art may refer to and / or modify a telebanking system using the voice call function and the DTMF signal processing function shown in FIG. It is possible to infer a configuration of a telebanking system for processing non-face-to-face financial transactions between the call terminal and the telebanking server through an intelligent communication network based on a communication function. However, the present invention provides a service based on the data communication function. Including a telebanking system, by which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains, in addition to the telebanking system by referring to and / or modifying the configuration of the telebanking system shown in Figure 27, non-face-to-channel based financial transactions in accordance with the present invention It would be possible to infer another banking system, such as an internet banking system and / or a wireless banking system and / or a TV banking system and / or a home banking system, but the present invention provides the telebanking system and / or the wireless banking system and / or Or all types of non-face-to-channel banking systems, including TV banking systems and / or home banking systems and / or future non-face-to-channel banking systems, wherein the technical configuration of the present invention is illustrated in FIG. It is by no means limited to.

In FIG. 27, the non-face-to-face financial transaction password (or code) may be an accurate term based on the voice-based initial interface setting information due to the characteristics of a telebanking system operating based on a voice communication channel. Although the non-face-to-face financial transaction password (or code) is used as it is for the term unification with the corresponding embodiment, the person having ordinary knowledge in the technical field to which the present invention belongs, the non-face-to-face financial transaction password (or code) It will be able to easily infer what is meant in the telebanking system shown in Figure 27, thereby the present invention is not limited.

The call terminal accesses the telebanking server 2700 based on a wired telephone function based on a general telephone switching network (PSTN) and the wired telephone function to provide an automatic response service (ARS) based on DTMF signal processing. And at least one landline telephone having a voice call function and a DTMF signal processing function for receiving a call, wherein the call terminal is non-face-to-face with the telebanking server 2700 through the PSTN. It is characterized by connecting a currency channel for financial transactions.

In addition, the call terminal accesses the tele-banking server 2700 based on a CDMA-based mobile communication network based on the wireless communication function and the wireless call function, and uses DTMF signal processing based answering service (ARS). And at least one mobile telephone (or wireless telephone) having a voice call function and a DTMF signal processing function for receiving the call), wherein the call terminal is provided through the mobile communication network. ) And a currency channel for non-face-to-face financial transactions.

In addition, the call terminal is connected to the telebanking server 2700 based on VoIP (Voice over Internet Protocol) -based VoIP network and the wired / wireless call function to answer the DTMF signal processing based answering service (ARS). And at least one VoIP terminal having a voice call function and a DTMF signal processing function for receiving the call), wherein the call terminal is non-face-to-face with the telebanking server 2700 through the VoIP network. It is characterized by connecting a currency channel for the transaction.

The financial system 2760 is a computerized system provided to a predetermined financial institution to open at least one financial account to at least one customer and to process a financial transaction based on the financial account. Account system (2762), which handles window services, such as credit or receiving or trust or foreign exchange, which occurs, information system (2763), which handles headquarters operations, branch office information support, and customer information management; Access to a variety of electronic financial services (e.g., telebanking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), other currency exchange, call center, financial settlement, etc. An interface corresponding to a middleware platform providing an external system 2701 and an interface between components in the financial system. At least for storing and managing the eS module 2765 and predetermined information (eg, ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. It includes a database management system (DBMS) 264 including one or more databases, and the intention of the person skilled in the art and / or the type of each financial institution (eg, commercial banks, savings banks, trust banks) and the purpose of the financial system. And according to the features, it is possible to further include at least one or more components, such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), in the technical field to which the present invention belongs Those skilled in the art will understand the technical details of the financial system 2760 clearly, and thus the detailed description thereof will be omitted for convenience. The present invention is not limited by the.

According to an embodiment of the present invention, the telebanking server 2700 is interworked with the financial system 2760 through the external system 2701, and for this purpose, the external bank 2701 has a predetermined interface means 2755. It is preferable to include a component for interworking with the telebanking server 2700 through.

The telebanking server 2700 may include at least one announcement source (eg, voice announcement source for financial transaction guidance) and a transaction source (eg, to provide a predetermined answering service (ARS) to at least one call terminal). , A database storing voicement data including a voicement source formed by combining DTMF signals input by a customer, and / or telebanking required to provide a predetermined telebanking service in conjunction with the financial system 2760. DBMS 2720 including a database for storing information or the like, or in accordance with the implementation method characterized in that the interworking with the data server provided with the DBMS 2720, thereby at least one predetermined call to the call terminal Telebanking service is provided.

According to an embodiment of the present invention, the telebanking information may be configured to authenticate a customer corresponding to the call terminal when at least one or more call terminals access and log in to the tele banking server 2700, and / or the customer Authenticate the financial transaction customer during at least one financial transaction through a banking server 2700, and / or authenticate the customer who subscribes to the financial product when the customer subscribes to the telebanking server 2700 for at least one financial product. And customer banking information for banking, and banking element information for processing a financial transaction corresponding to the financial transaction request in conjunction with the financial system 2760 when the financial transaction is requested from the customer through the call terminal. It is preferable to lose and further include at least one or more information required for telebanking according to the intention of the skilled person. However, in FIG. 27, this is omitted for convenience.

Referring to FIG. 27 according to the embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) use condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information may be included in the customer authentication information and stored in the DBMS 2720.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be provided in a separate database in addition to the customer authentication information, thereby limiting the present invention. Not.

For example, the non-face-to-face financial transaction password (or code) registered through the information registration system shown in FIG. 17 is provided in the DBMS 2764 on the financial system rather than the DBMS 2720 provided on the telebanking system. The present invention is not limited thereto.

Referring to FIG. 27, the telebanking server 2700 is a call path setting unit 2705 for connecting and managing a voice call channel for providing a predetermined telebanking service to at least one call terminal, and the call. A DTMF processing unit 2715 for reading a number / character corresponding to the DTMF signal by reading a DTMF signal received from at least one of the call terminals in cooperation with the setting unit 2705 and the DBMS 2720, and A UI processing unit 2710 that generates a voice-based user interface (UI) screen for providing a predetermined telebanking service to at least one call terminal in cooperation with a DTMF processing unit 2715, and the UI processing unit 2710 Providing the telebanking service through at least one voicement data (eg, announcement source, and / or transaction source) stored in the DBMS 2720 in conjunction with And a voicement management unit 2725 for generating (or extracting) a predetermined voicement (for example, a guidement and / or a transaction) for the mobile terminal. A call channel and a user interface for processing voice-based telebanking are implemented between the banking server 2700.

In addition, the telebanking server 2700 may provide a customer authentication interface to at least one call terminal by interworking with the DTMF processor 2715 through a UI processor 2710 based on the customer authentication information of the telebanking information, On the basis of the interface characterized in that it comprises a customer authentication unit 2730 receives at least one or more customer authentication information.

In addition, the telebanking server 2700 may provide a financial transaction related interface to at least one call terminal by interworking with the DTMF processor 2715 through a UI processor 2710 based on the banking element information of the telebanking information. The banking processor 2735 is provided with at least one financial transaction related information based on the interface.

In addition, the telebanking server 2700 is provided with a ledger processing unit 2740 that performs a ledger processing procedure corresponding to the financial transaction requested by the customer in cooperation with the financial system 2760 through a predetermined interface means 2755. The ledger processing unit 2740 may be connected to the external system 2701 of the financial system 2760 through the interface unit 2755.

The customer authentication information stored in the DBMS 2720 includes at least one of ID / PW information and personal information (eg, name, social security number, address, contact information, etc.) of a customer accessing the telebanking server 2700 through the call terminal. It is preferable to include the member information included above, wherein the customer authentication unit 2730 requests the ID / PW information of the customer to the call terminal in conjunction with the UI processing unit 2710, the call terminal And receiving the ID / PW information from the ID, and comparing the received ID / PW information with ID / PW information included in the member information, thereby authenticating the customer.

According to an embodiment of the present invention, the ID / PW information may be provided to the telebanking server 2700 according to a conventional ID / PW transmission and reception procedure, but the voice call network includes an intelligent network capable of data communication. When the call terminal is provided with a data communication function, the ID / PW information is provided in the call terminal in a symmetric key (or secret key) encryption method, and / or public key encryption method, And / or is encrypted and received through at least one or more of an electronic envelope encryption scheme and / or a key exchange encryption scheme. To this end, the customer authentication unit 2730 may be configured to decrypt the ID / PW information. It is preferable to further comprise a functional configuration.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, customer authentication information stored in the DBMS 2720 is transmitted to a customer connected through the call terminal. Certification authority information (eg, KFTC) and certificate server information, and / or certification authority registration authority information (e.g., if the certification certificate is registered through the process, the certification information, the certification certificate) And other certificate information, etc.), and / or certificate information issued to the customer by the certificate authority, wherein the customer authentication unit 2730 is a certificate server of the certificate authority. Requesting a certificate-based customer certification through an accredited certificate registered by the registrar and requesting the customer from the authentication server By receiving an authentication result, the customer is characterized in that the authentication.

According to the exemplary embodiment of the present invention, when the voice call network includes an intelligent network capable of data communication, and the call terminal is provided with a data communication function, the customer authentication unit 2730 is an authentication server of the authentication authority. And providing the communication session information and the certificate information connected to the call terminal, wherein the authentication server performs a customer authentication procedure corresponding to the certificate information to the call terminal based on the communication session information, and then outputs the result. It is preferable to provide to the customer authentication part 2730.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, customer authentication information stored in the DBMS 2720 is transmitted through the call terminal to the telebanking server. (2700) is made, including a copy of the public certificate of the customer to access, and / or directory connection information of the certification authority that issued a predetermined public certificate to the customer, preferably, wherein the customer authentication unit (2730) requests the certificate-based customer information to the call terminal in conjunction with the authentication server of the certification authority that issued the predetermined certificate to the customer, receives the certificate-based customer information from the call terminal, the certificate-based By authenticating customer information through a copy of the accredited certificate and / or through a directory of It characterized in that to authenticate the customer.

According to the exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 2730 or a predetermined random number generated by the call terminal. Encrypting the random number through the at least one encryption method of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method through the public certificate To provide to the customer authentication unit (2730) (for example, if the random number is generated in the call terminal further comprises a random number in the form of a plain text), the customer authentication unit (2730) and a copy of the authentication certificate of the customer and / Or decrypt and compare the encrypted random numbers based on the certificate information of the customer extracted from the directory, and / or the plain text form. By intercomparison by encrypting the random number (e.g., a random number, and / or a random number generated by the call from the customer terminal generates an authentication unit (2730)), it is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information is stored information previously stored in the call terminal (for example, information stored in the storage device of the call terminal by the telebanking server 2700, and / or the Information (or system information) previously stored in the call terminal, and / or storage information (eg, an IC card (and / or IC chip) read out from an IC card (and / or IC chip) interworking with the call terminal. A serial number and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuing authority), in this case, the call terminal may The stored information is encrypted using at least one of a symmetric key (or secret key) encryption method, and / or a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. By providing to the increase (2730), by decrypting the encrypted stored information based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory in the customer authentication unit 2730, It is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information is input information input through an input means provided in the call terminal (for example, information input through a key input device provided in the call terminal, and And / or information input through an input device other than a key input device (for example, a short-range communication device, etc.) provided in the call terminal, in which case the call terminal uses the public certificate to symmetrically input the input information. (Or secret key) encryption and / or public key encryption, and / or electronic envelope encryption, and / or key exchange encryption through at least one of the encryption method provided to the customer authentication unit 2730 And based on a copy of the customer's certificate and / or the certificate information of the customer extracted from the directory by the customer certificate unit 2730. By intercomparison decrypts the input information expensive, it is desirable to authenticate the customer.

In addition, when the voice call network includes an intelligent network capable of data communication, and when the call terminal is provided with a data communication function, the customer authentication information stored in the DBMS 2720 is the one time password provided to the customer. ) OTP generation information for generating an OTP authentication code that matches the OTP code generated through the authenticator is preferably made, wherein the customer authentication unit 2730 to the call terminal in conjunction with the UI processing unit 2710 By requesting a predetermined OTP code, receiving the OTP code from the call terminal, generating a predetermined OTP authentication code based on the OTP generation information, and comparing the received OTP code with the generated OTP authentication code. Characterized in that for authenticating the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method in the call terminal to provide a more advanced security function And / or is encrypted and received through at least one encryption method among key exchange encryption methods, and for this purpose, the customer authentication unit 2730 preferably further includes a function configuration for decrypting the OTP code. Do.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 2720. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the call terminal to the telebanking server When a non-face-to-face financial transaction is requested using a password (or code), the customer authentication unit 2730 may check whether the non-face-to-face financial transaction requested from the call terminal satisfies the password (or code) using condition information. do.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the customer authentication unit 2730 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), so that the non-face-to-face financial transaction password (or code) It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the customer authentication unit 2730 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is not performed at all, the customer authentication unit 2730 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. When a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) has been performed at least N (N> 1) times, the customer authentication unit 2730 may perform a non-face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid, while the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 2730 determines that the face-to-face financial Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the customer authentication unit 2730 determines whether the non-face-to-face financial transaction amount (or code) by using the non-face-to-face financial transaction password (or code) exceeds the limit amount. It is desirable to verify that financial transactions are currently available.

If the non-face-to-face financial transaction amount (or code) through the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the customer authentication unit 2730 is the non-face-to-face financial The non-face-to-face financial transaction through the transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 2730 processes the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 2730 is the non-face-to-face financial transaction password (or code Verify that the non-face-to-face financial transaction type through the non-face-to-face financial transaction (or code) is currently available by matching the financial transaction type included in the password (or code) terms and conditions. It is preferable.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the customer authentication unit 2730 determines The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the type of non-face-to-face financial transaction through the face-to-face financial transaction password (or code) When matching with the included financial transaction type, the customer authentication unit 2730 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 2730 is connected to the UI processing unit 2710 and the call terminal. Request the financial transaction password (or code), receive the financial transaction password (or code) from the call terminal, and receive the financial transaction password (or code) and the financial transaction password stored in the DBMS 2720. By comparing the (or code), the validity for the customer and / or the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer characterized in that the authentication.

When at least one financial transaction is requested from the call terminal, the banking processor 2735 provides a financial transaction request information input interface corresponding to the requested financial transaction to the call terminal in cooperation with the UI processor 2710. When predetermined financial transaction request information is input (or selected) from the call terminal through the financial transaction request information input interface, the predetermined financial transaction corresponding to the financial transaction request information is referred to with reference to the banking element information. The information may be generated (or extracted) and provided to the ledger processor 2740.

According to the technical feature of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 2720. The non-face-to-face financial transaction password (or code) and password (or code) using condition information is included through, and the non-face-to-face financial transaction without at least one or more authorized certificates and / or security code from the call terminal to the telebanking server When a non-face-to-face financial transaction is requested using a password (or code), the banking processor 2735 is linked with the customer authentication unit 2730 to the non-face-to-face financial transaction password (or code) on the financial transaction request information input interface screen. It is preferable to provide to the call terminal further comprises a predetermined user interface for inputting a; In response, the call terminal may further include a non-face-to-face financial transaction password (or code) in the predetermined financial transaction request information and transmit the same to the telebanking server.

In receiving the predetermined financial transaction request information from the call terminal, when the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processor 2735 is the customer authentication unit. It is preferable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with (2730), whereby through the non-face-to-face financial transaction password (or code) confidentiality (Confidentiality), Authentication, Integrity and Nonrepudiation are secured.

In receiving predetermined financial transaction request information from the call terminal, when following a conventional wireless banking procedure, the banking processor 2735 is linked with the customer authentication unit 2730 through the at least one customer authentication method through the financial method. It is preferable to authenticate the customer who requested the transaction, thereby making sure of the confidentiality and authentication of the customer who requested the financial transaction through the call terminal (or the customer who sent (or selected) the financial transaction request information). ), Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 2735 at the call terminal to secure confidentiality, authentication, integrity and non-repudiation of at least one or more financial transaction request information transmitted from the call terminal. The electronic signature of the customer is attached to the financial transaction request information, and the financial transaction request information to which the electronic signature is attached is preferably encrypted and transmitted using a public key encryption method according to the public key infrastructure. In this case, the banking processor 2735 preferably receives the financial transaction request information from the call terminal, decrypts it with a public key decryption method according to the public key infrastructure, and confirms the electronic signature. Confidentiality, authentication, integrity and nonrepudiation are ensured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 2735 is to secure the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the call terminal for at least one or more financial transactions, Preferably, a call terminal encrypts and transmits the financial transaction request information in an electronic envelope. In this case, the banking processor 2735 preferably receives the financial transaction request information from the call terminal and decrypts the financial transaction request information in an electronic envelope. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

The ledger processing unit 2740 may be linked with the financial system 2760 through a predetermined interface means 2755, and predetermined financial transaction information may be generated (or extracted) by the banking processing unit 2735. In this case, at least one ledger information to be extracted from the ledger on the financial system 2760 in response to the financial transaction information is identified, and the identified from the ledger on the financial system 2760 through the interface means 2755. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 2760 in response to the financial transaction information, and through the interface means 2755 the financial system ( 2760), the generated (or extracted) ledger record information is recorded on the ledger.

For example, the financial transaction requested from the call terminal is an account inquiry transaction for the last month, and the banking processor 2735 generates financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry (or Is extracted), the ledger processing unit 2740 is linked to the account ledger (and / or the customer ledger) on the financial system 2760 through the interface means 2755 based on the financial transaction information for the account inquiry The transaction history of the last month of the transaction history of the account is extracted from the transaction history information associated with the account ledger and provided to the banking processor 2735.

28A, 28B, and 28C illustrate a non-face-to-face financial transaction process through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, Figures 28A, 28B and 28C illustrate at least one non-face-to-face financial transaction system (e.g., an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or Or the home banking system shown in FIG. 28, wherein the call terminal is connected to a voice communication network (eg, a general telephone switched network (PSTN), and / or a mobile communication network, and / or a VOIP network). When requesting a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code), use of the non-face-to-face financial transaction password (or code) and password (or code) registered through the information registration system shown in FIG. The present invention relates to an implementation method of performing a tale banking procedure through a non-face-to-face financial transaction password (or code) using the condition information. Those skilled in the art may refer to and / or modify the drawings 28a, 28b, and 28c to implement a non-face-to-face financial transaction password (or code) implemented through the tale banking system shown in the drawing. Various implementation methods for the non-face-to-face financial transaction process can be inferred, but the present invention includes all the implementation methods inferred above and is not limited to the implementation methods shown in FIGS. 28A, 28B, and 28C.

That is, FIGS. 28A, 28B, and 28C show the information registration system shown in FIG. 17 in the call terminal when accessing the tally banking server through a predetermined voice call function and DTMF signal provided in the call terminal. Although the non-face-to-face financial transaction password (or code) registered through the password (or code) using the condition information is shown an implementation method for processing the face-to-face financial transaction based on the tole banking system, but the present invention Those skilled in the art may refer to and / or modify a telephony-based financial transaction channel connection method using a voice call function and a DTMF signal shown in FIGS. 28A, 28B, and 28C to the call terminal. An image registered through the information registration system shown in FIG. 17 in the call terminal based on a predetermined tale banking program to be loaded. The non-face-to-face financial transaction password (or code) and password (or code) using the condition information can be used to infer a method for processing the non-face-to-face financial transaction based on the tellale banking system, but the present invention Includes the provided tale banking-based financial transactions based on the tale banking program, whereby the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains may refer to, and / or modify, the banking-based financial transaction method shown in FIGS. 28A, 28B, and 28C, and, in addition to the bank, the banking system, the Internet banking system. It would be possible to infer a non-face-to-face financial transaction method through another banking system, such as a system and / or a wireless banking system and / or a TV banking system and / or a home banking system, but the present invention is directed to the internet banking system and / or wireless banking. A system and / or a TV banking system and / or a home banking system and / or a non-face-to-face channel banking system, which is proposed in the future, includes all kinds of non-face-to-channel based financial transactions, and the technical configuration of the present invention is shown in FIG. It is by no means limited to the case of the telle banking shown in Figs. 28B and 28C.

In the following FIGS. 28A, 28B, and 28C, the call terminal shown in FIG. 27 is referred to as "terminal" for convenience, and the tale banking server is referred to as "server" for convenience.

Referring to FIGS. 28A, 28B and 28C, the terminal is provided with at least one switch provided in a predetermined voice call network (eg, a public switched telephone network (PSTN), and / or a mobile communication network, and / or a VoIP network, etc.). A predetermined call channel for a non-face-to-face financial transaction based on the banking is connected to the server by performing a predetermined call processing procedure (2800).

When the call channel is connected as described above, the server is the non-face-to-face financial transactions in the non-face-to-face financial transaction password (or code) according to the present invention in the terminal and non-face-to-face financial transactions according to conventional tale banking based non-face-to-face financial transactions Generate (or extract) a voicement (eg, a guidement and / or a transaction), including a user interface for selecting one of the non-face-to-face financial transactions methods, and provide the voicement to the terminal (2810) Thus, the terminal uses a non-face-to-face financial transaction password (or code) according to the present invention through a user interface included in the voice announcement (eg, announcement and / or transaction, etc.) and conventional tale banking. The non-face-to-face financial transaction method based on the non-face-to-face financial transaction is selected (2815).

If the terminal does not select the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) through the user interface, the non-face-to-face financial transaction method according to conventional tale banking based non-face-to-face financial transaction is selected If the terminal 2820, the terminal performs the conventional tale banking based non-face-to-face financial transaction procedure shown in FIG.

On the other hand, if the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention is selected through the user interface (2820), the terminal through the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (2825). The server uses the password (or code) registered through the information registration system shown in FIG. 17 to use the non-face-to-face financial transaction password ( Or (code) confirms the validity of the number of times of non-face-to-face financial transactions (2830).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the number of times of use of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is not authenticated (2835), the server may include voice announcements (eg, announcements, and the like) containing predetermined financial transaction error information. And / or a transaction, etc.) is generated and transmitted to the terminal (2840), and the tale banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the number of times for the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is authenticated (2835), the server determines the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). A voice comment (eg, announcement and / or transaction), including a predetermined financial transaction type selection interface, is generated and provided to the terminal (2845), and the terminal correspondingly selects the financial transaction type. The financial transaction type selection information through the non-face-to-face financial transaction password (or code) is input (or selected) through an interface (2850).

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (2855), the terminal transmits the financial transaction type selection information to the server (2860), and the server In operation 2865, the validity of the non-face-to-face financial transaction type through the password (or code) using the password (or code) registered through the information registration system shown in FIG. 17 is verified.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to confirm whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). Or a non-face-to-face financial transaction through code) as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If matched with the server, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (2870), the server may generate voice announcements (eg, announcements, and / or some predetermined financial transaction error information). Or create a transaction, etc.) and transmit it to the terminal (2872), and does not perform the tale banking-based non-face-to-face financial transaction procedure.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (2870), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). Voice terminals (eg, announcements and / or transactions, etc.) including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) at the terminal. It generates (or extracts) (2874), and transmits the voicement (for example, announcements and / or transaction), including the financial transaction interface to the terminal and outputs (2876).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined tole banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferred to include a user interface for entering (or selecting) a non-face-to-face financial transaction password (or code) for validating the transaction.

In addition, the process of transmitting and / or outputting the voicement (eg, announcement and / or transaction) is preferably performed at least once according to the tole banking financial transaction procedure, whereby the present invention is not limited thereto. .

Thereafter, the terminal transmits predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and predetermined non-face-to-face financial transaction password (or code) for authenticating the non-face-to-face financial transaction through the financial transaction interface. (2878).

If the terminal enters (or selects) the non-face-to-face financial transaction password (or code) through the financial transaction interface (2880), the terminal inputs (or selects) the financial transaction request information. And a non-face-to-face financial transaction password (or code) is transmitted to the server (2882), and the server transmits the non-face-to-face financial transaction through a condition of using a password (or code) registered through the information registration system shown in FIG. Validate the non-face-to-face financial transaction amount through password (or code) (2884).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). The server checks whether the non-face-to-face financial transaction password (or code) exceeds the limit by checking whether the non-face-to-face financial transaction password (or code) is currently available. It is desirable to confirm.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). ), The non-face-to-face financial transaction through) is treated as invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) does not exceed the limit included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated (2886), the server may include predetermined financial transaction error information. A voice memo (eg, announcement and / or transaction) is generated and transmitted to the terminal (2888), and the tale banking based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) terms of use (2886), the server receives the received non-face-to-face financial transaction password (or Code) (2890).

According to an embodiment of the present invention, the validity verification process for the non-face-to-face financial transaction password (or code) is provided on the non-face-to-face financial transaction password (or code) received from the terminal and on the non-face-to-face banking system. It is preferable to include the process of comparing the financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (2892), the server generates a voicement (eg, announcement and / or transaction, etc.) containing the predetermined financial transaction error information. It transmits to the terminal (2888) and does not perform the tale banking-based non-face-to-face financial transaction procedure.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (2892), the server performs a financial transaction procedure corresponding to the financial transaction request information (2894).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the telle banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If the financial transaction corresponding to the financial transaction request information fails (e.g., an error occurs during the financial transaction procedure) (2896), the server may include a voice message containing predetermined financial transaction error information (e.g., And an announcement, and / or a transaction, etc.) are generated and transmitted to the terminal (2888), and the financial transaction procedure corresponding to the financial transaction request information is not performed.

On the other hand, if the financial transaction corresponding to the financial transaction request information is successful (2896), the server generates a voice message (eg, announcement and / or transaction) including a predetermined financial transaction history information to the terminal By sending (2898), the financial transaction requested from the terminal is completed.

29A and 29B illustrate a conventional non-face-to-face financial transaction method according to another exemplary embodiment of the present invention.

More specifically, FIGS. 29A and 29B illustrate at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or home banking). In the telebanking system shown in FIG. 27, the call terminal performs a predetermined call processing procedure through a predetermined voice communication network to connect a call channel with the telebanking server, and then a conventional telebanking procedure. If a voice call and DTMF-based non-face-to-face financial transaction is requested to the telebanking server through a telebanking based communication channel, the telebanking server processes the requested financial transaction, and the result is the telebanking based call channel. As an implementation method for providing to the call terminal through the present invention, the general knowledge in the technical field to which the present invention belongs In this case, various financial transaction methods using a telebanking based communication channel between the call terminal and the telebanking server may be inferred by referring to and / or modifying the drawings 29a and 29b. It includes an implementation method, and is not limited to the implementation method shown in FIGS. 29A and 29B.

That is, FIGS. 29A and 29B are provided to the telebanking server through a predetermined voice call network (eg, a public switched telephone network (PSTN), and / or a mobile communication network, and / or a VoIP network, etc.) provided in the call terminal. When the tele-banking based communication channel is connected to the communication channel, the method for processing a financial transaction requested by the call terminal is illustrated. However, if the person of ordinary skill in the art belongs to the present invention, the drawings 29a and 29b are provided. Reference and / or modification of a telebanking method using a voice call function and a DTMF signal processing function as shown in FIG. 2 to establish a predetermined data communication function between the call terminal and the telebanking server through an intelligent call network. Although it may be possible to infer a telebanking method for processing a non-face-to-face financial transaction, the present invention is based on the data communication function. Which it includes a telebanking method, to which the present invention is not limited.

In addition, those skilled in the art to which the present invention pertains may refer to and / or modify the telebanking-based financial transaction method shown in FIGS. 29A and 29B, and in addition to the telebanking system, the Internet banking system and / or Alternatively, another banking system such as a wireless banking system and / or a TV banking system may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention provides the telebanking system and / or the wireless banking system and And / or a non-face-to-face channel based financial transaction method of any kind, including a TV banking system and / or a non-face-to-face channel banking system proposed in the future, and the technical configuration of the present invention is illustrated in FIGS. 29A and 29B. It is by no means limited to.

In the following Figures 29a and 29b, the call terminal is referred to as "terminal" for convenience, and the telebanking server is referred to as "server" for convenience.

29A and 29B, when the non-face-to-face financial transaction is performed according to a conventional telebanking procedure in the process illustrated in FIG. 28, the terminal performs a telebanking based customer authentication procedure in association with the server ( 2900).

Those skilled in the art to which the present invention pertains, the terminal is at least one provided in the voice call network (e.g., general switched telephone network (PSTN), and / or mobile communication network, and / or VoIP network, etc.) By performing a predetermined call processing procedure through the above-described exchange, the technical features that the predetermined communication channel for the non-face-to-face financial transactions based on the server and the telebanking-based customer authentication through at least one customer authentication information Since you will be familiar with the technical features of the procedure, a detailed description thereof will be omitted for convenience.

If the telebanking based customer authentication is confirmed (2905), the terminal requests a telebanking based financial transaction to the server through the telebanking based communication channel (2910), the server is the requested non-face-to-face financial transaction Generating (or extracting) a voicement (eg, announcement, and / or transaction, etc.) that includes a predetermined financial transaction interface 2910, and generating (or extracting) through the telebanking based communication channel. ) And transmits the voicement (for example, announcement and / or transaction) to the terminal (2925).

According to an embodiment of the present invention, the financial transaction interface may include predetermined telebanking-based financial transaction request information for processing a predetermined telebanking-based financial transaction based on the selected (or input) account information, and / or the A predetermined password (e.g. account password, etc.) and / or security code (e.g., a security code printed on the security card issued to the customer during the telebanking application process) to verify the validity of the telebanking customer requesting a financial transaction. And / or enter a One Time Password (OTP) (e.g., a one-time password generated by an OTP authenticator (or OTP certification program) provided to a customer by a financial institution during the telebanking application process (or after a telebanking application)) Or select a user interface).

In addition, the process of transmitting and / or outputting the voicement (eg, announcement and / or transaction) is preferably performed at least once according to the telebanking financial transaction procedure, whereby the present invention is not limited thereto. .

Thereafter, the terminal inputs (or selects) the banking-based financial transaction request information including at least one for each telebanking-based financial transaction through the financial transaction interface (2930).

If the terminal inputs (or selects) the banking based financial transaction request information through the financial transaction interface (2935), the terminal inputs (or selects) the telebanking based financial transaction through the financial transaction channel. The request information is transmitted to the server (2940).

According to the exemplary embodiment of the present invention, the transmitting (or selecting) the telebanking-based financial transaction request information through the financial transaction channel to the server may include inputting (or selecting) the telebanking through the financial transaction interface. And the electronic financial signature request information is transmitted through the security module provided in the terminal to the server.

Thereafter, the server receives and reads the telebanking-based financial transaction request information through the financial transaction channel, thereby confirming the validity of the telebanking-based financial transaction request information (2945).

According to an embodiment of the present invention, receiving and reading the telebanking-based financial transaction request information through the financial transaction channel to confirm the validity may decode the telebanking-based financial transaction request information received from the terminal and / or Or checking the electronic signature attached to the telebanking-based financial transaction request information.

In addition, the validity check of the telebanking-based financial transaction request information, preferably further comprises authenticating the password and / or security code and / or OTP included in the telebanking-based financial transaction request information.

If the validity of the telebanking-based financial transaction request information is not authenticated (2950), the server generates a voicement (for example, a guidement and / or a transaction, etc.) that includes predetermined financial transaction error information. It transmits to the terminal (2955), and does not perform a financial transaction procedure corresponding to the telebanking-based financial transaction request information.

On the other hand, if the validity of the telebanking-based financial transaction request information is authenticated (2950), the server performs a financial transaction procedure corresponding to the telebanking-based financial transaction request information (2960).

According to an embodiment of the present invention, a financial transaction procedure corresponding to the telebanking-based financial transaction request information may include accessing the ledger of the telebanking customer provided on the financial system from the server to the telebanking-based financial transaction request information. It is preferable to include the addition / change / update procedure for the ledger information (or at least one or more additional information associated with the ledger information).

If a financial transaction corresponding to the tele-banking-based financial transaction request information fails (eg, an error occurs during the financial transaction procedure) (2965), the server may include a voice message including predetermined financial transaction error information. (Eg, an announcement and / or a transaction) is generated and transmitted to the terminal (2955), and the financial transaction procedure corresponding to the telebanking based financial transaction request information is not performed.

On the other hand, if the financial transaction corresponding to the telebanking-based financial transaction request information is successful (2965), the server generates a voicement (eg, a guidement and / or a transaction) including predetermined financial transaction history information. By sending to the terminal (2970), the financial transaction requested from the terminal is completed.

30 is a block diagram of a non-face-to-face financial transaction system for processing a face-to-face financial transaction through a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, FIG. 30 illustrates at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). In the WAP-based wireless banking system operating based on a WAP / ME (Wireless Application Protocol / Mobile Explorer) based wireless communication network (for example, a CDMA-based mobile communication network), a predetermined registration is performed through the information registration system shown in FIG. As a method of implementing a non-face-to-face financial transaction system for processing non-face-to-face financial transactions without at least one authorized certificate and / or security code in the Internet banking system based on a non-face-to-face financial transaction password (or code) of the present invention, Those skilled in the art to which the invention pertains may refer to, and / or modify, this W30 based on the WAP. In addition to the pre-banking system, other non-face-to-face financial transaction systems (e.g., a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system) are provided through the information registration system shown in FIG. Various implementation methods may be inferred to process non-face-to-face financial transactions without at least one or more authorized certificates and / or security codes based on a registered non-face-to-face financial transaction password (or code). It includes all the implementation methods, and is not limited to the implementation method shown in FIG.

In accordance with a preferred method of the present invention, at least one non-face-to-face financial transaction system (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system). WAP-based wireless banking system operating based on a WAP / ME-based wireless communication network (for example, CDMA-based mobile communication network), at least one wireless terminal 1740 having a predetermined browser and at least one or more of the wireless It comprises a wireless banking server 3000 for providing a WAP-based wireless banking service to the terminal 1740, the wireless banking server 3000 provides the WAP-based wireless banking service through a predetermined interface means 3055 It is associated with a financial system 3060 that handles the financial business required to do so.

Those skilled in the art to which the present invention pertains can easily guess components omitted for convenience because they do not include the core technical details of the present invention in the WAP-based wireless banking system shown in FIG. However, the present invention is not limited to the components omitted.

That is, FIG. 30 illustrates a method for implementing a WAP-based wireless banking system for processing non-face-to-face financial transactions between the wireless terminal 1740 and a wireless banking server based on a predetermined browser program provided in the wireless terminal 1740. Although illustrated, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify a WAP-based wireless banking-based financial transaction channel connection method using the browser program shown in FIG. A WAP-based wireless banking system configuration for processing non-face-to-face financial transactions between the wireless terminal 1740 and the wireless banking server based on a predetermined internet banking program installed in 1740, and / or the wireless terminal 1740. Infer the configuration of WAP-based wireless banking system to process non-face-to-face financial transactions using predetermined financial IC chip mounted or detached And / or wireless banking system configuration using the IEEE 802.16x-based portable Internet and / or IEEE 802.11x-based wireless LAN using MIP (Mobile IP) in addition to the WAP / ME-based wireless banking system can be inferred, but the present invention Includes a WAP-based wireless banking system provided based on the WAP-based wireless banking program, whereby the present invention is not limited thereto.

In addition, those skilled in the art to which the present invention pertains, in addition to the WAP-based wireless banking system by referring to and / or modify the configuration of the WAP-based wireless banking system shown in Figure 30, non-face-to-face according to the present invention Other banking systems, such as an internet banking system and / or a telebanking system and / or a TV banking system and / or a home banking system for channel-based financial transactions, may be inferred, but the present invention is directed to the internet banking system and / or tele 30 includes all kinds of non-face-to-face banking systems, including banking systems and / or TV banking systems and / or home banking systems and / or future non-face-to-channel banking systems, the technical configuration of the present invention being shown in FIG. It is by no means limited to the illustrated WAP-based wireless banking case.

Hereinafter, the WAP-based wireless banking in FIG. 30 is referred to as "wireless banking" for convenience.

The wireless terminal 1740 includes at least one swap browser for accessing the wireless banking server 3000 and receiving a browsing-based wireless web service based on a WAP / ME-based wireless communication function and the wireless communication function. One Personal Communication System (PCS) and / or Global System for Mobile communications (GSM) terminal and / or Personal Digital Cellular (PDC) and / or Personal Handyphone System (PHS) terminal and / or And a wireless terminal 1740 including at least one or more of a personal digital assistant (PDA) and / or a smart phone, and including the WAP / ME based Internet. The wireless banking server 3000 and a communication channel for WAP-based wireless banking are connected through a wireless communication network.

The financial system 3060 is a computerized system provided to a predetermined financial institution to open at least one financial account to at least one customer and to process a financial transaction based on the financial account. Account system 3062, which handles window services, such as credit or reception or trust or foreign exchange, which occurs, information system 3033, which processes the headquarters business, supports branch information, and manages customer information; Provides a variety of electronic financial services (e.g., wireless banking, phone banking, Cash Dispenser) / ATM (Automatic Teller Machine), line transfer, call center, financial settlement, etc. by connecting to external computer networks including companies, retailers and card companies An interface corresponding to the external system 3031, and a middleware platform that provides interfacing between components in the financial system. At least for storing and managing the eS module 3065 and predetermined information (e.g., ledger information, and / or customer information, and / or management information, etc.) required for each function in the components of the financial system. It comprises a database management system (DBMS) 3064 (Database Management System) containing one or more databases, the intention of the skilled person and / or the type of each financial institution (eg commercial banks, savings banks, trust banks) and the purpose of the financial system And according to the features, it is possible to further include at least one or more components, such as foreign exchange module (not shown), investment finance module (not shown), international module (not shown), in the technical field to which the present invention belongs Those skilled in the art will clearly understand the technical details of the financial system 3060, and thus detailed description thereof will be omitted for convenience. The present invention is not limited by the.

According to the method of the present invention, the wireless banking server 3000 is interlocked with the financial system 3060 through the external system 3061, and for this purpose, the external system 3051 has a predetermined interface means 3055. It is preferable to include a component for interworking with the wireless banking server 3000 through.

The wireless banking server 3000 is a database for storing wireless operation data including at least one or more wireless page sources and / or digital content for providing a predetermined web service to at least one or more wireless terminals 1740, and / or The DBMS 3020 includes a database for storing wireless banking information required to provide a predetermined wireless banking service in conjunction with the financial system 3060, or the DBMS 3020 is provided according to an implementation method. And interworking with a data server, whereby a predetermined wireless banking service is provided to at least one or more of the wireless terminals 1740.

According to an embodiment of the present invention, the wireless banking information may be configured to authenticate a customer corresponding to the wireless terminal 1740 when at least one or more wireless terminals 1740 access and log in to the wireless banking server 3000. Or when the customer authenticates the financial transaction customer at least one financial transaction through the wireless banking server 3000, and / or when the customer subscribes at least one financial product to the wireless banking server 3000. Customer authentication information for authenticating a customer who subscribes to a product, and when a financial transaction request is made from the customer through the wireless terminal 1740, interworking with the financial system 3060 to process a financial transaction corresponding to the financial transaction request. It is preferable to include banking element information for at least one or more information required for wireless banking according to the intention of the skilled person May be further included, this is omitted for convenience in the drawing 30.

Referring to this drawing 30 according to the embodiment of the present invention, when the non-face-to-face financial transaction password (or code) and password (or code) use condition information are registered through the information registration system shown in FIG. The non-face-to-face financial transaction password (or code) and password (or code) use condition information may be included in the customer authentication information and stored in the DBMS 3020.

According to another exemplary embodiment of the present invention, the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be provided in a separate database in addition to the customer authentication information, thereby limiting the present invention. Not.

For example, the non-face-to-face financial transaction password (or code) registered through the information registration system shown in FIG. 17 is provided in the DBMS 3064 on the financial system instead of the DBMS 3020 provided on the wireless banking system. The present invention is not limited thereto.

Referring to FIG. 30, the wireless banking server 3000 may include a wireless interface unit 3005 for connecting and managing a wireless communication-based communication channel for providing a predetermined wireless banking service to at least one or more wireless terminals 1740. And a wireless page manager 3015 for operating a wireless page to be provided to at least one wireless terminal 1740 in cooperation with the wireless interface unit 3005 and the DBMS 3020, and the wireless page manager 3015. In conjunction with the UI processing unit 3010 for generating a user interface (UI) screen for providing a predetermined wireless banking service to at least one wireless terminal 1740 in conjunction with the UI processing unit 3010 Extract predetermined content for providing the wireless banking service from the DBMS 3020 or receive predetermined content to be stored in the DBMS 3020 from the wireless terminal 1740. Characterized in that it comprises a content management unit 3025, and the communication channel for processing wireless banking based on the wireless communication between the wireless terminal 1740 and the wireless banking server 3000 by the functional configuration and The user interface is implemented.

In addition, the wireless banking server 3000 is connected to the wireless page operation unit 3015 through the UI processor 3010 based on the customer authentication information of the wireless banking information to at least one wireless terminal (1740) customers It is characterized in that it comprises a customer authentication unit 3030 to provide an authentication interface screen, or at least one or more customer authentication information based on the interface screen.

In addition, the wireless banking server 3000 performs a financial transaction with at least one wireless terminal 1740 in cooperation with the wireless page operation unit 3015 through a UI processing unit 3010 based on the banking element information of the wireless banking information. A banking processor 3035 may be provided to provide a related interface screen or receive at least one financial transaction related information based on the interface screen.

In addition, the wireless banking server 3000 is provided with a ledger processing unit 3040 that performs a ledger processing procedure corresponding to the financial transaction requested by the customer in conjunction with the financial system 3060 through a predetermined interface means 3055. The ledger processing unit 3040 is preferably connected to the external system 3031 of the financial system 3060 through the interface means 3055.

The customer authentication information stored in the DBMS 3020 may include ID / PW information and personal information (eg, name, resident registration number, address, contact information, etc.) of a customer accessing the wireless banking server 3000 through the wireless terminal 1740. It is preferable to include a member information including at least one, wherein the customer authentication unit 3030 is linked to the UI processing unit 3010 to the wireless terminal 1740 of the customer ID / PW information Request the request, receive the ID / PW information from the wireless terminal 1740, and compare the received ID / PW information with ID / PW information included in the member information to authenticate the customer. do.

According to an embodiment of the present invention, the ID / PW information may be provided to the wireless banking server 3000 according to a conventional ID / PW transmission / reception procedure, but the ID / PW information may be provided to provide a more advanced security function. The wireless terminal 1740 is encrypted using at least one or more of a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method and / or key exchange encryption method Preferably, the customer authentication unit 3030 further includes a function configuration for decrypting the ID / PW information.

In addition, the customer authentication information stored in the DBMS 3020 may be a certification authority information (for example, KFTC) and authentication server information that issues a predetermined certificate to a customer connected through the wireless terminal 1740, and / or the Accredited certificate registrar information (e.g., when the accredited certificate is registered through the process, the process information, when the accredited certificate is registered through the process, etc.), and / or certificate information issued to the customer by the certification body. It is preferable to further comprise, wherein the customer authentication unit 3030 requests the authentication certificate-based customer authentication through the authentication certificate registered by the registrar to the authentication server of the certification authority, the customer from the authentication server By receiving an authentication result, the customer is characterized in that the authentication.

According to an embodiment of the present invention, the customer authentication unit 3030 provides the communication session information and the certificate information connected to the wireless terminal 1740 to the authentication server of the certification authority, the authentication server is the communication session information After performing a customer authentication procedure corresponding to the certificate information to the wireless terminal 1740, it is preferable to provide the result to the customer authentication unit 3030.

In addition, the customer authentication information stored in the DBMS 3020 is made by including a copy of the authentication certificate of the customer connecting to the wireless banking server 3000 through the wireless terminal 1740, and / or to the customer It is preferable to include the directory connection information of the certification authority that issued the certificate, the customer authentication unit 3030 is the wireless terminal in conjunction with the authentication server of the certification authority that issued a predetermined certificate to the customer By requesting the certificate-based customer information to the 1740, receiving the certificate-based customer information from the wireless terminal 1740, and authenticating the certificate-based customer information through the copy of the certificate and / or the directory of the certification authority, Characterize the customer.

According to an exemplary embodiment of the present invention, the certificate-based customer information may be a predetermined random number generated by the customer authentication unit 3030 or a predetermined random number generated by the wireless terminal 1740. The wireless terminal 1740 uses at least one of a symmetric key (or secret key) encryption scheme, a public key encryption scheme, and / or an electronic envelope encryption scheme, and / or a key exchange encryption scheme for the random number. Encrypted through the above encryption method and provided to the customer authentication unit 3030 (for example, when the random number is generated in the wireless terminal 1740 further includes a random number in the form of a plain text), the customer authentication unit 3030 Decrypts the encrypted random number based on the copy of the customer's certificate and / or the certificate information of the customer extracted from the directory, and / or compares each other, and / or By intercomparison by encrypting the plain text groups in the form of a random number (e.g., a random number, and / or a random number generated by the mobile station (1740) generated by the client authentication unit 3030), it is desirable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information is stored in the storage information of the wireless terminal 1740 previously stored in the wireless terminal 1740 (eg, the wireless banking server 3000 in the storage device of the wireless terminal 1740). Information, and / or information (or system information) previously stored in the wireless terminal 1740, and / or storage read out from an IC card (and / or IC chip) interoperating with the wireless terminal 1740. Information (eg, IC card (and / or IC chip) serial number, and / or information stored in the IC card (and / or IC chip) memory by the IC card (and / or IC chip) issuer) In this case, the wireless terminal 1740 is the symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method, and / or key exchange for the stored information through the certificate Encryption through at least one encryption method The customer authentication unit 3030 is provided to the customer authentication unit 3030 and decrypts the encrypted stored information based on the copy of the customer's official certificate and / or the certificate information of the customer extracted from the directory. By comparing each other, it is preferable to authenticate the customer.

According to another exemplary embodiment of the present invention, the certificate-based customer information may include input information (eg, a key input device provided in the wireless terminal 1740) input through an input means provided in the wireless terminal 1740. Information input through an input device (eg, a short-range communication device) other than a key input device provided in the wireless terminal 1740, and in this case, the wireless terminal 1740. The at least one encryption method of symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic envelope encryption method, and / or key exchange encryption method is used for the input information. Encrypted through the customer authentication unit 3030, provided by the customer authentication unit 3030 of the customer's official certificate copy and / or the certificate of the customer extracted from the directory It decrypts the encrypted information based on input information, by mutual comparison, it is desirable to authenticate the customer.

In addition, the customer authentication information stored in the DBMS (3020) is preferably made of OTP generation information for generating an OTP authentication code matching the OTP code generated through the One Time Password (OTP) authenticator provided to the customer, When the customer authentication unit 3030 interoperates with the UI processing unit 3010, requests a predetermined OTP code to the wireless terminal 1740, receives the OTP code from the wireless terminal 1740, and generates the OTP Generate a predetermined OTP authentication code based on the information, and by comparing the received OTP code and the generated OTP authentication code, characterized in that for authenticating the customer.

According to an embodiment of the present invention, the OTP code is a symmetric key (or secret key) encryption method, and / or public key encryption method, and / or electronic in the wireless terminal 1740 to provide a higher security function. It is preferable that the data is encrypted and received through at least one or more of an envelope encryption method and / or a key exchange encryption method. For this purpose, the customer authentication unit 3030 further includes a function configuration for decrypting the OTP code. It is preferable to make.

According to the technical features of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 3020. The non-face-to-face financial transaction password (or code) and password (or code) usage condition information are included, and the non-face-to-face non-faceted financial transaction password (or code) and at least one or more authorized certificates and / or security codes from the wireless terminal 1740 to the wireless banking server. When a non-face-to-face financial transaction using a face-to-face financial transaction password (or code) is requested, the customer authentication unit 3030 requests that the face-to-face financial transaction requested from the wireless terminal 1740 satisfy the password (or code) use condition information. It is characterized by checking that.

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, the customer authentication unit 3030 checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), the non-face-to-face financial transaction password (or code) It is desirable to verify that non-face-to-face financial transactions are currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction through (or code) is performed more than once, the customer authentication unit 3030 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while If the non-face-to-face financial transaction using the face-to-face financial transaction password (or code) is not performed at all, the customer authentication unit 3030 treats the face-to-face financial transaction through the face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. When a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) has been performed N (N> 1) or more times, the customer authentication unit 3030 performs the face-to-face finance through the non-face-to-face financial transaction password (or code). If the transaction is treated as invalid and the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, the customer authentication unit 3030 performs the non-face-to-face financial Non-face-to-face financial transactions with transaction passwords (or codes) are treated as valid.

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). If the customer authentication unit 3030 checks whether the non-face-to-face financial transaction amount (or code) through the non-face-to-face financial transaction password (or code) exceeds the limit amount, the non-face-to-face financial transaction password (or code) It is desirable to verify that financial transactions are currently available.

If the non-face-to-face financial transaction amount (or code) through the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the customer authentication unit 3030 is the non-face-to-face The non-face-to-face financial transaction through the financial transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If the limit amount is not exceeded, the customer authentication unit 3030 treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition to limit to payment, or to deposit a Cash Management Service (CMS), or a small account transfer, etc. In this case, the customer authentication unit 3030 is the non-face-to-face financial transaction password (or code) Verify that the non-face-to-face financial transaction type through the non-face-to-face financial transaction (or code) is currently available by matching the financial transaction type included in the password (or code) terms and conditions. It is preferable.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the customer authentication unit 3030 determines The non-face-to-face financial transaction through the face-to-face financial transaction password (or code) is treated as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is the password (or code) use condition information. When matched with the financial transaction type included in the, the customer authentication unit 3030 is treated as a non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code).

When the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) satisfies the password (or code) using condition information, the customer authentication unit 3030 is linked with the UI processing unit 3010 and the wireless terminal. Request the financial transaction password (or code) to the 1740, receive the financial transaction password (or code) from the wireless terminal 1740, the received financial transaction password (or code) and the DBMS 3020 By comparing the financial transaction password (or code) stored in the), and the validity of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) requested by the customer, characterized in that do.

When at least one financial transaction is requested from the wireless terminal 1740, the banking processor 3035 requests a financial transaction corresponding to the requested financial transaction to the wireless terminal 1740 in cooperation with the UI processor 3010. Providing an information input interface screen and receiving (or selecting) predetermined financial transaction request information from the wireless terminal 1740 through the financial transaction request information input interface screen, referring to the banking element information; It is characterized in that the predetermined financial transaction information corresponding to the financial transaction request information is generated (or extracted) and provided to the ledger processing unit 3040.

According to the technical features of the present invention, non-face-to-face financial transaction password (or code) and password (or code) using condition information are registered through the information registration system shown in FIG. 17 and stored in the customer authentication information stored in the DBMS 3020. The non-face-to-face financial transaction password (or code) and password (or code) usage condition information are included, and the non-face-to-face non-faceted financial transaction password (or code) and at least one or more authorized certificates and / or security codes from the wireless terminal 1740 to the wireless banking server. When a non-face-to-face financial transaction is requested through a face-to-face financial transaction password (or code), the banking processor 3035 may be linked with the customer authentication unit 3030 to display the non-face-to-face financial transaction password ( Or a predetermined user interface for inputting a code) to the wireless terminal 1740. Preferably, in response thereto, the wireless terminal 1740 further includes a non-face-to-face financial transaction password (or code) in the predetermined financial transaction request information to transmit to the wireless banking server.

In receiving the predetermined financial transaction request information from the wireless terminal 1740, if the non-face-to-face financial transaction password (or code) is further included in the received financial transaction request information, the banking processor 3035 It is preferable to authenticate the validity of the non-face-to-face financial transaction password (or code) in conjunction with the customer authentication unit 3030, whereby the confidentiality of the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) ( Confidentiality, Authentication, Integrity and Nonrepudiation are secured.

In receiving predetermined financial transaction request information from the wireless terminal 1740, when following the conventional wireless banking procedure, the banking processing unit 3035 performs at least one customer authentication scheme in cooperation with the customer authentication unit 3030. It is preferable to authenticate the customer who requested the financial transaction through the service, thereby providing confidentiality (for the customer who requested the financial transaction through the wireless terminal 1740 (or a customer who inputs (or selects) the financial transaction request information and transmits the information). Confidentiality, Authentication, Integrity and Nonrepudiation are secured.

In addition, when following the conventional wireless banking procedure, the banking processing unit 3035, in order to secure the confidentiality, authentication, integrity and non-repudiation of at least one or more financial transaction request information transmitted from the wireless terminal 1740, the wireless Preferably, the terminal 1740 attaches the electronic signature of the customer to the financial transaction request information, and encrypts and transmits the financial transaction request information to which the electronic signature is attached using a public key encryption method according to a public key infrastructure. In this case, the banking processor 3035 receives the financial transaction request information from the wireless terminal 1740, decrypts the public key decryption method according to the public key infrastructure, and confirms the electronic signature. This ensures confidentiality, authentication, integrity and nonrepudiation of the financial transaction request information.

In addition, when following the conventional wireless banking procedure, the banking processing unit 3035 ensures confidentiality, authentication, integrity and non-repudiation of the financial transaction request information transmitted from the wireless terminal 1740 for at least one financial transaction. To this end, the wireless terminal 1740 preferably transmits the financial transaction request information encrypted by an electronic envelope method. In this case, the banking processor 3035 receives the financial transaction request information from the wireless terminal 1740. It is preferable to decrypt by the electronic envelope method, thereby ensuring the confidentiality, authentication, integrity and non-repudiation of the financial transaction request information.

The ledger processing unit 3040 is characterized in that it is linked to the financial system 3060 through a predetermined interface means 3055, the predetermined financial transaction information is generated (or extracted) by the banking processing unit 3035 In this case, at least one ledger information to be extracted from the ledger on the financial system 3060 in response to the financial transaction information is identified, and the identified from the ledger on the financial system 3060 through the interface means 3055. Extracting ledger information, and / or generating (or extracting) ledger record information recorded in the ledger on the financial system 3060 in response to the financial transaction information, and through the interface means 3055, the financial system ( 3060), the generated (or extracted) ledger record information is recorded in the ledger.

For example, the financial transaction requested from the wireless terminal 1740 is an account inquiry transaction for the last one month, and the financial transaction information (eg, account inquiry section information, account number, etc.) for the account inquiry is performed by the banking processor 3035. When generated (or extracted), the ledger processing unit 3040 is based on the financial transaction information for the account inquiry account ledger (and associated with the customer ledger on the financial system 3060 through the interface means 3055) And / or transaction history information associated with the account ledger) from the transaction history of the account to the banking processor 3035.

31A, 31B, and 31C are views illustrating a non-face-to-face financial transaction process using a non-face-to-face financial transaction password (or code) according to another embodiment of the present invention.

More specifically, Figures 31A, 31B, and 31C illustrate at least one non-face-to-face financial transaction system (e.g., an Internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or In the wireless banking system shown in FIG. 31, which is a home banking system, the wireless terminal 1740 is a wireless communication network (for example, a CDMA-based mobile communication network, an IEEE 802.16X-based portable Internet, or an IEEE 802.11X-based wireless LAN). If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is requested, the non-face-to-face financial transaction password (or code) and password (or registered) are registered through the information registration system shown in FIG. Code) a method of performing a wireless banking procedure through a non-face-to-face financial transaction password (or code) according to the present invention using the use condition information. As one of ordinary skill in the art to which the present invention pertains, the non-face-to-face financing performed through the wireless banking system shown in FIG. 31 by referring to and / or modifying the drawings 31a, 31b, and 31c. Although various implementation methods for the non-face-to-face financial transaction process through a transaction password (or code) may be inferred, the present invention includes all the implementation methods inferred above, and is illustrated in FIGS. 31A, 31B and 31C. It is not limited to implementation method.

That is, FIGS. 31A, 31B, and 31C register the information shown in FIG. 17 at the wireless terminal 1740 when accessing the wireless banking server through a predetermined browser program included in the wireless terminal 1740. Although the non-face-to-face financial transaction password (or code) and password (or code) using condition information registered through the system is shown an implementation method of processing the non-face-to-face financial transaction based on the wireless banking system, but the present invention Those skilled in the art may refer to and / or modify a wireless banking-based financial transaction channel connection method using the browser program illustrated in FIGS. 31A, 31B, and 31C, and the wireless terminal 1740. The wireless terminal 1740 is registered through the information registration system shown in FIG. 17 on the basis of a predetermined wireless banking program installed in the wireless banking program. Although the non-face-to-face financial transaction password (or code) and password (or code) using condition information may be inferred from the wireless banking system based on the implementation method for processing the non-face-to-face financial transaction, the present invention It includes wireless banking-based financial transactions provided based on a wireless banking program, whereby the present invention is not limited.

Also, those skilled in the art may refer to and / or modify the wireless banking-based financial transaction method shown in FIGS. 31A, 31B, and 31C, and, in addition to the wireless banking system, provide Internet banking. It would be possible to infer a non-face-to-face financial transaction method through another banking system, such as a system and / or a telebanking system and / or a TV banking system and / or a home banking system, but the present invention is directed to the internet banking system and / or telebanking. It includes all types of non-face-to-face channel based financial transactions, including systems and / or TV banking systems and / or home banking systems and / or non-face-to-face channel banking systems proposed in the future. It is by no means limited to the case of the wireless banking shown in Figs. 31B and 31C.

In the following FIGS. 31A, 31B and 31C, the wireless terminal 1740 shown in FIG. 30 is referred to as a "terminal" for convenience, and the wireless banking server is referred to as a "server" for convenience.

Referring to FIGS. 31A, 31B, and 31C, the wireless communication network (eg, a CDMA-based mobile communication network, an IEEE 802.16x-based portable Internet, or an IEEE 802.11x-based wireless LAN, etc.) may be executed by executing a predetermined browser program in the terminal. When connecting to the server through the 3100, the server connects the communication channel between the terminal and the server through the browser (3105), where the communication channel is provided in the wireless terminal 1740 in the server Generates (or extracts) a predetermined wireless page at the request of a browser program and transmits the predetermined wireless page to the wireless terminal 1740. The browser program included in the wireless terminal 1740 provides a predetermined user interface included in the wireless page. It means that a predetermined communication session is allocated to receive at least one or more information (or data) inputted (or selected) based on the above. .

According to another exemplary embodiment of the present invention, when the wireless terminal 1740 is provided with a predetermined wireless banking program, the server may be configured with at least one wireless banking program based on a predetermined communication protocol defined in the wireless banking program. A communication channel for transmitting and receiving the above information (or data) can be allocated.

When the communication channel is connected as described above, the server is the non-face-to-face financial transaction in the non-face-to-face financial transaction password (or code) according to the present invention and the non-face-to-face financial transaction based on conventional wireless banking based non-face-to-face financial transaction A wireless page including a user interface for selecting one of the non-face-to-face financial transaction methods is generated (or extracted) and provided to the terminal (3110), and correspondingly, the terminal provides a user interface included in the wireless page. The non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) according to the present invention and a non-face-to-face financial transaction based on conventional wireless banking-based non-face-to-face financial transactions are selected (3115). .

If the non-face-to-face financial transaction method (non-face-to-face financial transaction code (or code) according to the present invention through the user interface in the terminal is not selected, the non-face-to-face financial transaction method according to the conventional wireless banking based non-face-to-face financial transaction is selected) 3120, the terminal performs the conventional wireless banking based non-face-to-face financial transaction procedure shown in FIGS. 32 and / or 33.

On the other hand, if the non-face-to-face financial transaction method through the non-face-to-face financial transaction password (or code) according to the present invention is selected through the user interface (3120), the terminal through the non-face-to-face financial transaction password (or code) The non-face-to-face financial transaction selection information is generated and transmitted to the server (3125), and the server uses the password (or code) registered through the information registration system shown in FIG. 17 to use the non-face-to-face financial transaction password ( Or (code) checks the validity of the number of times of non-face-to-face financial transactions (3130).

According to the method of the present invention, the password (or code) using condition information includes a condition for limiting the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to be limited to one or N (N> 1) times. Preferably, in this case, the server checks the cumulative number of non-face-to-face financial transactions through the non-face-to-face financial transaction password (or code), thereby making non-face-to-face finance through the non-face-to-face financial transaction password (or code). It is desirable to verify that the transaction is currently available.

For example, when the password (or code) use condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to one time, the non-face-to-face financial transaction password before the currently requested non-face-to-face financial transaction If the non-face-to-face financial transaction via (or code) is performed more than once, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as invalid, while the non-face-to-face financial transaction password ( Or the non-face-to-face financial transaction via code) is never performed, the server treats the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

Alternatively, when the password (or code) using condition information restricts the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) to N (N> 1), the above-mentioned non-face-to-face financial transaction is requested. If a non-face-to-face financial transaction using a non-face-to-face financial transaction password (or code) is performed more than N (N> 1) times, the server indicates that the face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is invalid. And if the non-face-to-face financial transaction with the non-face-to-face financial transaction password (or code) is performed less than N (N> 1) times, then the server is face-to-face with the face-to-face financial transaction password (or code). The financial transaction is treated as valid.

If the validity of the number of times of the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is not authenticated (3135), the server generates a wireless page including predetermined financial transaction error information and transmits it to the terminal. 3140, the wireless banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the number of times of use of the non-face-to-face financial transaction password (or code) is authenticated (3135), the server selects the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). A wireless page including a predetermined financial transaction type selection interface is generated and provided to the terminal (3145). In response, the terminal transmits the non-face-to-face financial transaction password (or code) through the financial transaction type selection interface. Financial transaction type selection information through the input (or selection) (3150).

If financial transaction type selection information is input (or selected) through the non-face-to-face financial transaction password (or code) (3155), the terminal transmits the financial transaction type selection information to the server (3160), and the server In step 3165, the validity of the non-face-to-face financial transaction type through the password (or code) using the password (or code) registered through the information registration system shown in FIG. 17 is verified.

According to an embodiment of the present invention, the password (or code) using condition information may be used to transfer a non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) to a specific financial transaction (eg, a designated financial account, or a utility bill). It is preferable to include a condition that restricts to payment, or deposit to a Cash Management Service (CMS), or a small amount of money transfer, etc., in which case the server is non-face-to-face through the non-face-to-face financial transaction password (or code) By checking whether the financial transaction type matches the financial transaction type included in the password (or code) use condition, it is preferable to check whether the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) is currently available.

If the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) does not match the type of financial transaction included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). Or a non-face-to-face financial transaction through code) as invalid, while the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is included in the password (or code) terms and conditions information. If matched with the server, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is not authenticated (3170), the server generates and transmits a wireless page including predetermined financial transaction error information to the terminal. 3317, the wireless banking-based non-face-to-face financial transaction procedure is not performed.

On the other hand, if the validity of the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code) is authenticated (3170), the server corresponds to the non-face-to-face financial transaction type through the non-face-to-face financial transaction password (or code). Generate (or extract) a wireless page including a predetermined financial transaction interface having a user interface for inputting (or selecting) the non-face-to-face financial transaction password (or code) at the terminal (3174); The wireless page including the transmission is output to the terminal (3176).

According to an embodiment of the present invention, the financial transaction interface may include predetermined financial transaction request information for processing a predetermined wireless banking based financial transaction based on the selected (or input) account information, and / or the non-face-to-face finance. It is preferred to include a user interface for entering (or selecting) a non-face-to-face financial transaction password (or code) for validating the transaction.

In addition, the wireless page transmission and / or output process is preferably performed at least one or more times according to the wireless banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal transmits predetermined financial transaction request information corresponding to the selected non-face-to-face financial transaction type and predetermined non-face-to-face financial transaction password (or code) for authenticating the non-face-to-face financial transaction through the financial transaction interface. Type (or select) 3178.

If the terminal enters (or selects) a non-face-to-face financial transaction password (or code) from the financial transaction request information through the financial transaction interface (3180), the terminal inputs (or selects) the financial transaction request information. And a non-face-to-face financial transaction password (or code) is transmitted to the server (3182), and the server receives the non-face-to-face financial transaction through a condition of using a password (or code) registered through the information registration system shown in FIG. Validate the non-face-to-face financial transaction amount through password (or code) (3184).

According to an embodiment of the present invention, the password (or code) using condition information may include a predetermined limit amount for the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code). In this case, the server checks whether the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit, so that the non-face-to-face financial transaction using the non-face-to-face financial transaction password (or code) is currently used. It is desirable to confirm that it is possible.

If the non-face-to-face financial transaction amount (or code) using the non-face-to-face financial transaction password (or code) exceeds the limit amount included in the password (or code) terms and conditions information, the server may enter the non-face-to-face financial transaction password (or code). ), The non-face-to-face financial transaction through) is treated as invalid, while the amount of non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) does not exceed the limit included in the password (or code) terms and conditions information. If not, the server treats the non-face-to-face financial transaction through the non-face-to-face financial transaction password (or code) as valid.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is not authenticated (3186), the server may include predetermined financial transaction error information. The wireless page is generated and transmitted to the terminal (3188), and the wireless banking-based non-face-to-face financial transaction procedure is not performed.

If the validity of the non-face-to-face financial transaction amount through the non-face-to-face financial transaction password (or code) is authenticated through the password (or code) terms of use (3186), the server receives the received non-face-to-face financial transaction password (or Code) (3190).

According to an embodiment of the present invention, the validity authentication process for the non-face-to-face financial transaction password (or code) may include a non-face-to-face provided on the non-face-to-face financial transaction password (or code) received from the terminal and the wireless banking system. It is preferable to include the process of comparing the financial transaction password (or code).

In addition, the validity verification process for the non-face-to-face financial transaction password (or code) is calculated by accumulating the number of times of use of the non-face-to-face financial transaction password (or code) by processing in conjunction with the non-face-to-face financial transaction password (or code) It is preferable to further comprise the step of storing.

If the validity of the non-face-to-face financial transaction password (or code) is not authenticated (3192), the server generates a wireless page including predetermined financial transaction error information and transmits it to the terminal (3188), and the wireless banking Do not follow a non-face-to-face financial transaction process.

If the validity of the non-face-to-face financial transaction password (or code) is authenticated (3192), the server performs a financial transaction procedure corresponding to the financial transaction request information (3194).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the wireless banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If the financial transaction corresponding to the financial transaction request information fails (for example, if an error occurs during the financial transaction procedure) (3196), the server generates a wireless page containing predetermined financial transaction error information. It transmits to the terminal (3188) and does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if a financial transaction corresponding to the financial transaction request information is successful (3196), the server generates a wireless page including predetermined financial transaction history information and transmits it to the terminal (3198), thereby requesting the financial transaction from the terminal. To complete.

32 is a diagram illustrating a process of connecting a financial transaction channel for a conventional non-face-to-face financial transaction according to another embodiment of the present invention.

More specifically, FIG. 32 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the wireless banking system shown in FIG. 30, when the wireless terminal 1740 requests a non-face-to-face financial transaction through a WAP / ME based wireless communication network (for example, a CDMA based mobile communication network) according to a conventional internet banking procedure, An embodiment of the present invention relates to a method for connecting a wireless banking-based financial transaction channel between the wireless terminal 1740 and the wireless banking server by performing a customer authentication procedure previously defined in the Internet banking server. If a person having a, a non-face-to-face financing between the wireless terminal 1740 and the wireless banking server by referring to and / or modified in this figure 32 Would be able to infer the various embodiments how to connect the wireless banking based financial transaction channel for the present invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 32.

That is, FIG. 32 illustrates a non-face-to-face finance between the wireless terminal 1740 and the wireless banking server based on the browser program when accessing the wireless banking server through a predetermined browser program included in the wireless terminal 1740. Although an implementation method of connecting a wireless banking-based financial transaction channel for a transaction has been illustrated, a person having ordinary knowledge in the technical field to which the present invention belongs is connected to a wireless banking-based financial transaction channel using a browser program shown in FIG. By referring to and / or modifying the method, a wireless banking-based financial transaction channel for non-face-to-face financial transactions is established between the wireless terminal 1740 and the wireless banking server based on a predetermined wireless banking program installed in the wireless terminal 1740. Infer an implementation method to connect, and / or IE using MIP (Mobile IP) in addition to the WAP / ME based wireless banking system Although an implementation method for connecting a financial transaction channel using an EE 802.16x based portable Internet and / or an IEEE 802.11x based wireless LAN may be inferred, the present invention provides a wireless banking based financial transaction provided based on the wireless banking program. It includes, but the present invention is not limited thereto.

In addition, those skilled in the art to which the present invention pertains, refer to and / or modify the Internet banking-based financial transaction channel connection method shown in Figure 32, in addition to the Internet banking system, Internet banking system and / or Other banking systems, such as telebanking systems and / or TV banking systems and / or home banking systems, may infer an implementation method for linking non-face-to-face channel-based financial transactions channels for non-face-to-face financial transactions. The present invention includes all types of non-face-to-face channel-based financial transactions, including Internet banking systems and / or telebanking systems and / or TV banking systems and / or home banking systems and / or future non-face-to-face banking systems. Is not limited to the case of the wireless banking shown in FIG.

In FIG. 32, the wireless terminal 1740 is referred to as " terminal " for convenience, and the wireless banking server is referred to as " server " for convenience.

Referring to FIG. 32, when the non-face-to-face financial transaction is performed according to a conventional wireless banking procedure in the process shown in FIG. 31, the server may generate a predetermined wireless page (or extracted) for providing to the terminal. In addition, a predetermined security module for wireless banking is mounted on the terminal in a wireless banking main page, and / or a predetermined script for checking whether to update the security module is provided to the terminal, It is determined whether a predetermined security module for wireless banking is installed in the terminal and / or the security module is updated (3210).

According to another exemplary embodiment of the present invention, when the wireless terminal 1740 is provided with a predetermined wireless banking program, the server requests the wireless banking program for version information and / or the last update date information, and the like. It may be determined whether to update the program (and / or the security module associated with the wireless banking program).

If a predetermined security module is to be installed and / or updated in the terminal (3215), the server transmits the latest version of the wireless banking security module to the terminal according to a remote program installation procedure defined in the browser program. And mount (3220).

If the terminal does not need to install and / or update the latest version of the wireless banking security module (3225), or if the terminal does not need to install and / or update the wireless banking security module (3215), the server By activating the wireless banking security module mounted on the terminal, the wireless banking security channel is connected between the terminal and the server (or the communication channel between the terminal and the server to a secure channel) (3230), where the security for wireless banking A channel means a predetermined digital signature attached to information (or data) required for security among information (or data) included in a wireless page provided from the server to the terminal, and / or at least one encryption method ( And / or an encryption algorithm), the terminal may verify the electronic signature and / or the encryption scheme (and / or encryption algorithm). Means a communication channel for decoding the information (or data) by a corresponding predetermined decoding scheme (and / or decryption algorithm), and the information (or data) to be provided to the server for non-face-to-face financial transactions by the terminal. When a predetermined digital signature is attached to and / or encrypted and transmitted using at least one encryption method (and / or encryption algorithm), the server verifies the electronic signature and / or the encryption method (and / or encryption algorithm). Means a communication channel for decoding the information (or data) with a predetermined decoding scheme (and / or decoding algorithm) corresponding to the &quot;

According to another exemplary embodiment of the present invention, when the wireless terminal 1740 is provided with a predetermined wireless banking program, the wireless banking-based secure channel is established in the server according to a communication protocol defined in the wireless banking program. When the electronic signature is attached to the information (or data) to be provided by the data and / or is provided by encrypting with at least one encryption method (and / or encryption algorithm), the electronic signature is confirmed by the terminal and / or the Means a communication channel for decrypting the information (or data) by a predetermined decryption method (and / or decryption algorithm) corresponding to an encryption method (and / or an encryption algorithm), and also for non-face-to-face financial transactions in the terminal. Attach a predetermined electronic signature to information (or data) to be provided to the server and / or at least one or more When encrypted and transmitted using an encryption method (and / or an encryption algorithm), the server verifies the digital signature and / or a predetermined decryption method (and / or decryption algorithm) corresponding to the encryption method (and / or encryption algorithm). ) Means a communication channel for decoding the information (or data).

According to the present invention, the security module is to perform an electronic signature attachment, and / or encryption, and / or protection function for the information (or data) by using the customer's authorized certificate mounted on the terminal It features.

When the wireless banking security channel is connected, the server requests the terminal to perform a wireless banking customer authentication procedure through the browser program (3235).

According to an exemplary embodiment of the present invention, the wireless banking customer authentication procedure may include predetermined wireless banking-based customer authentication data (eg, ID / PW, customer number, etc., registered by the customer in the wireless banking application process) through the terminal. ) Is input (or generated) and transmitted to the server, wherein the server comprises authenticating a customer connected through the terminal as a wireless banking customer based on the customer authentication data, wherein the customer authentication data It is preferable that the digital signature and / or encrypted is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the wireless banking customer authentication procedure may include predetermined wireless banking-based customer authentication data (eg, an ID / PW or customer number registered by the customer in a wireless banking application process) through the terminal. Etc.) and input (or generate) and transmit the data to the authentication server, wherein the authentication server authenticates the customer connected through the terminal as a wireless banking customer based on the customer authentication data, and provides the result to the server. In this case, it is preferable that the customer authentication data include public certificate-based authentication data, and the authentication server is a server for authenticating the public certificate-based authentication data.

Thereafter, the terminal inputs (or generates) predetermined customer authentication data according to the request, and transmits the electronic signature and / or encryption to the server (and / or authentication server) through the security module to perform wireless banking customer authentication. Request (3240), the server (and / or authentication server) authenticates the customer connected through the terminal as a wireless banking customer for non-face-to-face financial transactions based on the customer authentication data received from the terminal. (3245).

If the wireless banking customer authentication fails (3250), the server blocks the wireless banking security channel for the terminal (3255), so that the wireless banking-based financial transaction is not made through the terminal.

On the other hand, if the wireless banking customer authentication is successful (3250), the server converts the wireless banking security channel into a wireless banking-based financial transaction channel in connection with the security module provided in the terminal (3260), where the wireless banking-based The financial transaction channel refers to at least one financial transaction request requested from the terminal, and the server accesses the ledger on the financial system to perform the requested financial transaction (eg, account inquiry, account transfer, bill payment, .. Communication channel).

33 is a view showing a conventional non-face-to-face financial transaction method according to another embodiment of the present invention.

More specifically, FIG. 33 illustrates one or more non-face-to-face financial transaction systems (eg, an internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system and / or a home banking system). In the wireless banking system shown in FIG. 30, the wireless terminal 1740 accesses the wireless banking server through the process shown in FIG. 32 and performs a conventional customer authentication procedure. When a wireless banking-based financial transaction channel is connected between the wireless banking server and the wireless banking server, the wireless terminal 1740 requests a non-face-to-face financial transaction to the wireless banking server through the wireless banking-based financial transaction channel, and at the wireless banking server. An implementation method of processing the requested financial transaction and providing the result to the wireless terminal 1740 through the wireless banking-based financial transaction channel; As those skilled in the art to which the present invention pertains, various financing using a wireless banking based financial transaction channel between the wireless terminal 1740 and the wireless banking server may be made by referring to and / or modifying the drawing 33. It will be possible to infer a transaction method, but the present invention includes all the implementation methods inferred above, and is not limited to the implementation method shown in FIG.

That is, FIG. 33 shows the wireless terminal 1740 via the browser program when the wireless banking-based financial transaction channel is connected by accessing the wireless banking server through a predetermined wireless communication network provided in the wireless terminal 1740. Although an implementation method of processing a financial transaction requested by the present invention is illustrated, those of ordinary skill in the art may refer to and / or refer to a wireless banking based financial transaction method using a browser program shown in FIG. It is possible to infer various types of wireless banking-based financial transaction methods between the wireless terminal 1740 and the wireless banking server based on a predetermined wireless banking program mounted on the wireless terminal 1740, but the present invention. Includes the provided wireless banking based financial transactions based on the wireless banking program, The present invention will not limited.

In addition, those skilled in the art to which the present invention pertains may refer to and / or modify the wireless banking-based financial transaction method shown in FIG. 33, in addition to the wireless banking system, a telebanking system and / or a wireless banking system. Other banking systems, such as systems and / or TV banking systems, may infer a non-face-to-face channel-based financial transaction method for non-face-to-face financial transactions, but the present invention is directed to the telebanking system and / or wireless banking system and / or TV. It includes all types of non-face-to-face channel-based financial transactions including banking system and / or non-face-to-face channel banking system proposed in the future, the technical configuration of the present invention is limited to the case of the wireless banking shown in Figure 33 Never.

In FIG. 33, the wireless terminal 1740 is referred to as a "terminal" for convenience, and the wireless banking server is referred to as a "server" for convenience.

Referring to FIG. 33, when the wireless banking-based financial transaction channel between the terminal and the server is connected through the process illustrated in FIG. 32, the terminal communicates with the wireless banking-based financial transaction channel for non-face-to-face financial transactions. When a server requests a wireless banking based financial transaction (3300), the server generates (or extracts) a wireless page including a predetermined financial transaction interface corresponding to the requested non-face-to-face financial transaction (3310), and The generated (or extracted) wireless page is transmitted to the terminal through a wireless banking-based financial transaction channel (3315).

According to an embodiment of the present invention, the financial transaction interface may perform predetermined financial transaction request information for processing a predetermined wireless banking based financial transaction based on the selected (or input) account information, and / or the financial transaction. A predetermined password (e.g., account password, etc.) and / or security code (e.g., a security code printed on the security card issued to the customer during the wireless banking application process) to verify the validity of the requesting wireless banking customer and / or Enter (or select) an One Time Password (OTP) (e.g., a one-time password generated by an OTP authenticator (or OTP certification program) provided to a customer by a financial institution (or after a wireless banking application). It is preferable to further include a user interface.

In addition, the wireless page transmission and / or output process is preferably performed at least one or more times according to the wireless banking financial transaction procedure, whereby the present invention is not limited.

Thereafter, the terminal inputs (or selects) financial transaction request information including at least one for each wireless banking-based financial transaction through the financial transaction interface (3320).

If the terminal receives (or selects) the financial transaction request information through the financial transaction interface (3325), the terminal transmits the input (or selected) financial transaction request information to the server through the financial transaction channel. Send (3330).

According to an embodiment of the present invention, transmitting the financial transaction request information (or selected) inputted through the financial transaction channel to the server may include the financial transaction request information input (or selected) through the financial transaction interface. It comprises the electronic signature and / or encryption through the security module provided in the terminal and transmitting to the server.

Thereafter, the server confirms and validates the validity of the financial transaction request information by receiving and reading the financial transaction request information through the financial transaction channel (3335).

According to an embodiment of the present invention, receiving and reading the financial transaction request information through the financial transaction channel to confirm validity may decode the financial transaction request information received from the terminal and / or the financial transaction request information. This includes checking the digital signature attached to it.

In addition, the validation of the financial transaction request information, preferably, further comprises authenticating a password and / or security code and / or OTP included in the financial transaction request information.

If the validity of the financial transaction request information is not authenticated (3340), the server generates a wireless page including predetermined financial transaction error information and transmits it to the terminal (3345), corresponding to the financial transaction request information. Do not perform financial transaction procedures.

On the other hand, if the validity of the financial transaction request information is authenticated (3340), the server performs a financial transaction procedure corresponding to the financial transaction request information (3350).

According to an embodiment of the present invention, the financial transaction procedure corresponding to the financial transaction request information may be performed by accessing the ledger of the wireless banking customer provided on the financial system from the server to the ledger information corresponding to the financial transaction request information. Or at least one additional information associated with the ledger information).

If a financial transaction corresponding to the financial transaction request information fails (for example, an error occurs during the financial transaction procedure) (3355), the server generates a wireless page including predetermined financial transaction error information. In operation 3345, the terminal does not perform a financial transaction procedure corresponding to the financial transaction request information.

On the other hand, if a financial transaction corresponding to the financial transaction request information is successful (3355), the server generates a wireless page including predetermined financial transaction history information and transmits it to the terminal (3360), thereby requesting the financial transaction from the terminal. To complete.

According to the present invention, a predetermined non-face-to-face finance for performing a predetermined non-face-to-face financial transaction through at least one non-face-to-face financial transaction system without a predetermined accredited certificate and / or security code through a financial institution window corresponding to the face-to-face channel. After registering the transaction password (or code), at least one or more of a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. In a financial transaction process through a non-face-to-face financial transaction system, there is an advantage of performing at least one non-face-to-face financial transaction without a predetermined official certificate and / or security code.

According to the present invention, a non-face-to-face financial transaction for performing a non-face-to-face financial transaction through at least one non-face-to-face financial transaction system without the certificate and / or security code through a non-face-to-face channel through a predetermined certificate and / or security code After registering a non-face-to-face financial transaction password (or code), at least one of a predetermined internet banking system, and / or a telebanking system, and / or a wireless banking system, and / or a TV banking system, and / or a home banking system. There is an advantage in performing at least one or more non-face-to-face financial transactions in the course of financial transactions through a non-face-to-face financial transaction system including one or more without a predetermined certificate and / or security code.

Claims (6)

After the customer authentication at the bank teller terminal, the customer is given a one-time (or limited number) password (or code) for a financial transaction (account transfer, etc.), the password (or code) information and the financial transaction (account transfer, etc.) Storing the information on the storage medium by linking the constraint condition information on the &lt; RTI ID = 0.0 &gt;) &lt; / RTI &gt; and the customer authentication information (and / or customer account information); Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Customer authentication information (and / or customer account information) corresponding to the received password (or code) and financial transaction (account transfer, etc.) in connection with the storage medium (or storage medium operating means) in a predetermined information checking means. Checking the constraint condition information for the; And Providing the processing of the customer's financial transaction (account transfer, etc.) without the customer's accredited certificate verification process on the basis of the confirmed information in a predetermined financial transaction processing means; How to process a transaction. After the customer authentication at the bank teller terminal, the customer is given a one-time (or limited number) password (or code) for a financial transaction (account transfer, etc.), and the password (or code) information and the customer authentication information (and / or Or storing information in a predetermined storage medium by linking the customer account information); Receiving the password (or code) from the customer terminal at a predetermined information receiving means when the customer accesses the Internet banking through the terminal; Confirming customer authentication information (and / or customer account information) corresponding to the received password (or code) in association with the storage medium (or storage medium operating means) in a predetermined information checking means; And Providing the processing of the customer's financial transaction (account transfer, etc.) without the customer's accredited certificate verification process on the basis of the confirmed information in a predetermined financial transaction processing means; How to process a transaction. The method of claim 1, On the basis of the confirmed information in the predetermined financial transaction processing means, the account password provided from the customer terminal when providing the processing of the financial transaction (account transfer, etc.) of the customer without the process of confirming the authentication certificate of the customer and / Or verifying the validity of the security card password. According to claim 1, Restriction information for the financial transaction (account transfer, etc.), And at least one financial transaction type restriction condition information, a transfer limit setting condition information, and a financial transaction possible period / time setting condition information. A recording medium comprising a program for executing the method of claim 1 or 2. The one-time (or limited number of times) password (or code) information for the financial transaction (account transfer, etc.) provided to the authentication customer by the bank teller terminal is linked with the customer authentication information (and / or customer account information). Information storage means for storing in a storage medium; Information receiving means for receiving the password (or code) from the customer terminal; Information checking means for confirming customer authentication information (and / or customer account information) corresponding to the received password (or code) in association with the storage medium (or storage medium operating means); And And financial transaction processing means for providing the financial transaction (account transfer, etc.) processing of the customer based on the confirmed information without a process of confirming the certificate of the customer.

Images