KR100856514B1 - System for sevice authentication - Google Patents

System for sevice authentication Download PDF

Info

Publication number
KR100856514B1
KR100856514B1 KR1020060127359A KR20060127359A KR100856514B1 KR 100856514 B1 KR100856514 B1 KR 100856514B1 KR 1020060127359 A KR1020060127359 A KR 1020060127359A KR 20060127359 A KR20060127359 A KR 20060127359A KR 100856514 B1 KR100856514 B1 KR 100856514B1
Authority
KR
South Korea
Prior art keywords
service
authentication
server
user
providing
Prior art date
Application number
KR1020060127359A
Other languages
Korean (ko)
Other versions
KR20080054790A (en
Inventor
김기정
Original Assignee
이노시드 주식회사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 이노시드 주식회사 filed Critical 이노시드 주식회사
Priority to KR1020060127359A priority Critical patent/KR100856514B1/en
Publication of KR20080054790A publication Critical patent/KR20080054790A/en
Application granted granted Critical
Publication of KR100856514B1 publication Critical patent/KR100856514B1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
    • G06Q50/10Services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3242Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC

Abstract

The present invention relates to a service authentication processing technology, and more particularly, a service that provides a service through a mobile terminal or a user computer provided with a smart card storing an authentication processing module for various service authentication or transmitting and receiving data with the smart card. An authentication processing system.
The service authentication processing system according to the present invention includes a smart card storing authentication key information of a plurality of services and a service authentication module for providing an authentication key of a corresponding service according to a service connection request input from a user; A user computer for transmitting and receiving data with the smart card, transmitting authentication key information accessed by the service authentication module to an authentication server connected to a network including the Internet, and providing a service authenticated service to a user; An authentication server for requesting authentication key information of a corresponding service according to a service connection request transmitted from the user computer, establishing a connection with the corresponding service according to the transmitted authentication key information, and providing a provided service to the corresponding user computer; And a service server for providing a corresponding service to the authentication server according to the authentication processing result provided from the authentication server.
Smart card, SIM, service authentication, mobile terminal

Description

System for sevice authentication

1 is a schematic diagram schematically showing a service authentication processing system according to an embodiment of the present invention.

2 is a block diagram schematically illustrating a service authentication processing module according to an exemplary embodiment of the present invention.

3 is a block diagram schematically illustrating an authentication server according to an exemplary embodiment of the present invention.

4 is a schematic diagram schematically showing a service authentication processing system according to another embodiment of the present invention.

5 is a block diagram schematically showing an authentication server according to another embodiment of the present invention.

The present invention relates to a service authentication processing technology, and more particularly, a service that provides a service through a mobile terminal or a user computer equipped with a smart card storing authentication processing modules for various service authentication or transmitting and receiving data with the smart card. An authentication processing system.

In general, most services provided on the Internet require authentication information of registered users and determine whether to provide a corresponding service by authenticating authentication information such as, for example, a login ID and a password inputted by the user.

On the other hand, smart cards are being used as a medium when the security level such as electronic wallet, mileage, authorized certificate, electronic bankbook used for financial services such as electronic commerce is high or the integrity of data security is to be guaranteed.

The service provider installs a separate program for implementing a specific service in the smart card based on the security authentication technology of the smart card to access the service provider's server and use the service.

Execution programs installed in smart cards store authentication information requested by the operator's server and provide the stored authentication information to the operator's server to provide financial services such as electronic commerce, which must be highly secured or ensure the integrity of data security. You can get the service.

However, the conventional smart card only stores the authentication information and is not sufficient to encrypt all data required for the service or to inform the direct service using the smart card. In addition, different providers are building different authentication information and corresponding driving programs. Therefore, the smart card issued by the service provider includes only authentication information for service authentication provided by the service provider and a driving program corresponding thereto, so that various services cannot be authenticated with a single smart card. Such a technology has disadvantages in that it is not suitable for personal authentication and operation of a program required to receive a service using a smart card in a network enabled personal computer environment.

The present invention was devised to solve such a problem, and an object thereof is to provide a service authentication processing system capable of processing authentication of various services with one smart card.

Furthermore, the present invention provides a service authentication processing system in which a user can easily receive authentication and services by providing a guide program that provides basic information necessary for a user to use a smart card for authentication of various services.

In the above-described service authentication processing system according to the present invention, a user can transmit and receive data with a smart card owned by the user, and integrates authentication of a service using his computer connected to a network including the Internet, that is, a user computer. When a request is made to the authentication server, the authentication server establishes a connection with the user's computer. When the user connects the authentication server and his computer, when the user requests to provide the service authentication module for integrated authentication processing of multiple services, the authentication server provides the service authentication processing module to the corresponding user computer, and the user computer provides the service provided. Send the authentication module to the connected smart card for storage.

On the other hand, if the user establishes a connection between the smart card possessed by the user and the desired computer to provide the desired service, and drives the service authentication module stored in the smart card using the user computer, the service authentication module is configured to provide various services to the user computer. It provides a guided program that provides the basic information needed for certification.

The guide program is a type of user interface that makes it easier for users to connect and authenticate one or more registered services. The user selects and inputs a desired service from among registration services provided in the guide program, and requests the provision of the corresponding service. Accordingly, the authentication server receives the service selection information provided from the user computer and requests the authentication key information according to the use of the maritime service. The service authentication module transmits authentication key information of the corresponding service to the authentication server, and the authentication server receives the authentication key information transmitted and establishes a connection with the corresponding service server.

Meanwhile, the service server which has established a connection with the authentication server requests user authentication information such as, for example, an ID and a password, from the authentication server to provide a service. Accordingly, the authentication server requests user authentication information from the user computer, and the service authentication module accesses user authentication information corresponding to the corresponding service and transmits the user authentication information to the authentication server. The authentication server transmits the transmitted user authentication information to the service server, and the service server provides the user authenticated service to the user computer.

The service provided by the service authentication processing system according to the present invention may be an electronic payment service, a multimedia providing service including a game / music / video, a messenger, a bookmark connection service.

According to another aspect of the present invention, the smart card according to the present invention may be embodied as a SIM card that is embedded or detachably formed in a mobile terminal such as a user's mobile terminal or a PDA, and is provided from a carrier server through mobile data communication. Provided services can be provided.

Hereinafter, the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art can easily understand and reproduce the present invention.

1 is a schematic diagram schematically showing a service authentication processing system according to an embodiment of the present invention. As shown, in the service authentication processing system according to the present invention, authentication key information of a plurality of services is stored, and a service authentication module 101 for providing an authentication key of a corresponding service is stored according to a service connection request input from a user. Send and receive data with the smart card 100 and the smart card 100, and transmits the authentication key information accessed by the service authentication module 101 to the authentication server 300 connected to the network including the Internet, service authentication The user computer 200 that provides the processed service to the user, requests authentication key information of the corresponding service according to a service connection request transmitted from the user computer 200, and establishes a connection with the corresponding service according to the transmitted authentication key information. And, the authentication server 300 for providing the provided service to the user computer 200, and the authentication provided from the authentication server 300 Accordingly, the service server 400 is configured to provide a corresponding service to the authentication server 300.

The smart card 100 is a card that can contain a large amount of information by mounting an integrated circuit memory device. Also known as an integrated circuit card, it is generally the same as a credit card standardized by the International Organization for Standardization (ISO). Compared to magnetic cards, it has a very large memory capacity, high functionality and stability. The structure consists of a connection terminal, an IC chip, and a plastic card. The smart card 100 is designed to enable various kinds of identity inquiry, including medical insurance card.

When the smart card 100 is classified in terms of function and internal structure, the smart card 100 may be generally classified into three types, a memory type, a microprocessor built-in type, and an interactive type. The memory type smart card 100 is a smart card 100 having no microprocessor built therein and includes security logic in addition to a memory mainly used in a field that can be treated as a security, such as a public telephone card or a purchase right. There is a method, and there is a method in which only memory is built in for pure data storage, such as a health insurance card. EEPROM is mainly used as memory.

The smart card 100 with a built-in microprocessor may perform a high level function such as determination, operation, and data protection by embedding a microprocessor and a memory. Smart card 100 according to the present invention preferably uses an interactive smart card 100, a memory containing a microprocessor responsible for the operation, authentication key database that stores a plurality of authentication key information, and the user The I / O protocol for transmitting and receiving data to and from the computer 200 and an application program for driving the smart card 100 may be built in to interactively transmit information.

The smart card 100 according to the present invention stores a service authentication module 101 for using a plurality of services. The service authentication module 101 is, for example, a kind of application program such as a virtual machine, and stores authentication key information of a plurality of services and provides an authentication key of a corresponding service according to a service connection request input from a user. In particular, the service authentication module 101 is an authentication key information used in a service having a high security level, such as an electronic wallet, mileage, an authorized certificate, an electronic bankbook used for financial services such as electronic commerce, or the integrity of data security should be guaranteed. Of course, it supports the functions required for electronic payment. Description of the service authentication module 101 will be described in more detail with reference to FIG. 2.

2 is a block diagram schematically illustrating a service authentication processing module according to an exemplary embodiment of the present invention. As shown, the service authentication processing module according to the present invention includes an authentication key database 110 storing authentication key information for accessing one or more services, and stored authentication key information according to an authentication key request of the authentication server 300. An authentication key providing unit 120 provided to the authentication server 300 through the user computer 200, a service providing unit 130 for providing a service provided from the service server 400 to the user, and e-commerce processing Electronic wallet processing unit 141 for processing the payment and charging of the cyber money for, and the transaction history providing unit 142 for storing the payment or charging history by the electronic wallet processing unit 141 and provide according to the user's request It is configured to include an electronic transaction processing unit 140.

The authentication key database 110 is allocated and configured in a predetermined area of the memory provided in the smart card 100, and includes a service authentication key value, user authentication pin value, data encryption key value, and information for each service identification information registered by a user. Authentication key information including a file is stored. The authentication key database 110 is accessed and controlled by the authentication key providing unit 120.

The key value for the service authentication may be access information to the service server 400 to drive or receive a registered service. The user authentication key value is, for example, user authentication information such as an ID and a password for receiving a service provided by the service server 400. The data encryption key value is a key value for encrypting or decrypting data transmitted and received with the service server 400 when receiving a service requiring close data security such as electronic payment. The information file may include a version of the service, data generated through the service, and an autorun program that runs the service.

According to a characteristic aspect of the present invention, the authentication key information according to the present invention is a combination of the time information provided from the service server 400 connected to receive the registered service and the unique number of the smart card or from the service server 400. It is created by a combination of the time information provided and the application ID for each service. In particular, in order to prevent the theft of authentication key information when a service requiring close data security such as electronic payment is received, time information is received from the service server 400 each time it is combined with the unique number of the smart card 100. By creating and saving. By creating and storing a combination of the time information of the service server 400 and the application ID (AID: Appliction ID), which is unique information for each service stored in the smart card 100, the more secure security can be maintained.

The authentication key providing unit 120 provides the authentication key information stored in response to the authentication key request of the authentication server 300 to the authentication server 300 through the user computer 200. When the user selects a desired service from his computer, that is, a guide program provided by the user computer 200, the user computer 200 is an authentication key including service selection information with a service authentication module mounted on the smart card 100. Ask for the offer. The authentication key providing unit 120 of the service authentication module 101 accesses the authentication key information corresponding to the selection information of the corresponding service from the authentication key database 110 with reference to the service selection information and provides it to the user computer 200. .

The user computer 200 transmits the authentication key information provided by the authentication key provider 120 to the authentication server 300, and the authentication server 300 processes service use and user authentication through the received authentication key. .

The service provider 130 provides a service provided from the service server 400 to the user through the user computer 200. The authentication server 300 processes the service use and user authentication through the authentication key providing unit 120, notifies the service server 400 providing the corresponding service that the service use and user authentication has been processed, and provides the service. request. The service server 400 provides a corresponding service according to a request of the authentication server 300, and the authentication server 300 receives data for the corresponding service and transmits it to the user computer 200. The service provider 130 receives a service transmitted to the user computer 200 and outputs a driving command of a program of the user computer 200 necessary for providing the service, thereby providing a service.

The service authentication processing system according to the present invention is more effective for a service having a high security level, such as electronic commerce, or to ensure the integrity of data security. Therefore, the service authentication processing system according to the present invention includes an electronic transaction processing unit 140 for providing an electronic wallet service required for electronic commerce.

The electronic transaction processing unit stores an electronic wallet processing unit 141 which processes payment and charging of cyber money for electronic commerce processing, and stores or manages payment or charging details by the electronic wallet processing unit 141 according to a user's request. It includes a history providing unit 142.

The electronic wallet processing unit 141 may be an integrated internet banking service linked to an internet banking service provided by a bank or a service for using cyber money paid or charged by a user. The electronic wallet processing unit 141 automatically provides a registered bank internet banking service when a user visits an internet shopping site using a user computer 200 to purchase an item and requests a payment, without accessing a separate bank server. Easily make electronic payments. In addition, when the Internet shopping site supports cyber money payment, for example, cyber money and T-money amount information charged by the user is provided, and payment service according to the purchase is provided. The transaction history providing unit 142 provides the payment or charging history by the electronic wallet processing unit 141 in the form of a list according to storage management and a user's request.

According to an additional aspect of the present invention, the service authentication processing system according to the present invention sets the corresponding service according to the environment set by the user as well as the authentication and service authentication of the service providing the multimedia including the game / music / video. to provide. Accordingly, the service authentication module 101 according to the present invention includes a personal setting database 150 for storing personal setting data of services provided by a plurality of service servers 400 and multimedia according to a multimedia service providing request input from a user. Multimedia service for transmitting authentication key information of a service to a corresponding service server 400 and providing a service provided from the service server 400, and accessing personal setting data set in the personal setting database 150 to set the corresponding service. It includes a processor 160.

The personal setting database 150 stores setting information set by the user for each service registered by the user. For example, in the case of a music providing service, player setting information such as volume, skin, and equalizer of a multimedia player for providing music is stored.

The multimedia service processor 160 transmits the authentication key information of the multimedia service to the corresponding service server 400 according to the request for providing the multimedia service input from the user, and provides the service provided from the service server 400, but the personal setting database Access the personal setting data set in 150 to set and provide a corresponding service.

When the user inputs a multimedia service providing request including game / music / video selection information, the multimedia service processing unit 160 requests the service providing request including the multimedia selection information through the user computer 200 through the authentication server 300. To send). The authentication server 300 requests the provision of authentication key information for use of the corresponding service and user authentication, and the multimedia service processor 160 transmits authentication key information corresponding to the service to the authentication server 300. Accordingly, the authentication server 300 processes service use and user authentication through the received authentication key information, and requests the service server 400 to provide a corresponding multimedia service.

The service server 400 provides data for providing a service to the user computer 200 through the authentication server 300. The multimedia service processor 160 is mounted on the user computer 200 when the provided service data is received. The execution command of the multimedia player or game driving program is transmitted to the user computer 200 to execute the corresponding service.

Furthermore, the multimedia service processor 160 accesses and provides user setting information for a corresponding service stored in the personal setting database 150 together with an execution command of a multimedia player or a game driving program to the user computer 200. Accordingly, the user computer 200 executes a multimedia player or a game driving program to which the user setting information is applied, and provides a corresponding service to the user.

According to a further aspect of the present invention, the service authentication processing system according to the present invention provides the user with easy operation and login and personal setting of the messenger service through authentication key information stored in the smart card 100. Accordingly, the service authentication module 101 according to the present invention transmits the authentication key information to the service server 400 of the corresponding messenger according to the messenger service provision request input from the user, and provides the messenger service provided from the service server 400. It provides a messenger processing unit 170.

When the messenger service provision request registered by the user is input, the messenger processing unit 170 transmits the messenger service provision request to the authentication server 300 through the user computer 200. The authentication server 300 requests the provision of authentication key information for use of the messenger service and user authentication, and the messenger processing unit 170 transmits corresponding authentication key information to the authentication server 300. Accordingly, the authentication server 300 processes service use and user authentication through the received authentication key information, and requests the service server 400 to provide a messenger service.

The service server 400 provides data for providing a service to the user computer 200 through the authentication server 300. The messenger processor 170 is mounted on the user computer 200 when the provided service data is received. The execution command of the messenger program is transmitted to the user computer 200 to execute the messenger service.

According to a further aspect of the present invention, the service authentication processing system according to the present invention is an authentication server in response to a request for adding a new service input from a user of a newly registered service or an update request for a registered service from the authentication server 300. The apparatus further includes a service update processor 180 that stores the authentication key of the new service provided from 300 or updates data set according to the update file.

The service update processor 180 adds authentication key information of a new service or updates authentication key information of a service already registered according to an input of a new service addition request from a user or an update notification of a service registered from the authentication server 300. .

When the user accesses the new service server 400 through the user computer 200 and applies for new service registration, and requests the service update processing unit 180 to register the new service, the service update processing unit 180 requests the service server. Request service use authentication and user authentication information to 400. The service server 400 transmits the authentication key information according to the corresponding service provision to the user computer 200 through the authentication server 300, and the service update processor 180 transmits the corresponding authentication key information to the authentication key database 110. Register to save.

In addition, the service update processing unit 180 receives the update data provided through the authentication server 300 from the service server 400 when an update of the service registered service occurs and executes the update of the corresponding service. This update process is the same as the general software update in the technical context, the detailed description is omitted.

The user computer 200 transmits the authentication key information accessed by the service authentication module 101 to the authentication server 300 connected to the network including the Internet, and provides the service authenticated service to the user. For example, the user computer 200 may be a personal computer connected to a network including the Internet, and is provided with interface means capable of transmitting and receiving data with the smart card 100. The interface means for transmitting data to and from the smart card 100 may be, for example, a contactless reader or a separate card reader into which the smart card 100 is inserted using RF communication. The user computer 200 drives the service authentication module 101 stored in the smart card 100 according to a command for driving the service authentication module 101 stored in the smart card 100 by the user, Run the guide program and provide it to the user.

When a user inputs a service providing request including service selection information using a guide program, the user computer 200 establishes a connection to the authentication server 300 and provides service authentication key information necessary for using the corresponding service. It receives from the authentication module 101 and transmits to the authentication server (300). The authentication server 300 processes service use authentication through the received service authentication key information, and provides a service provided from the service server 400 to the corresponding user computer 200. The user computer 200 receives the provided service and provides it to the user.

The service server 400 may be, for example, a web service server 400 that provides an online financial service system that processes Internet banking or electronic payment, and provides various multimedia services, and is provided from the authentication server 300. The data for providing the service is provided to the authentication server 300 according to the authentication processing result.

The authentication server 300 requests authentication key information of a corresponding service according to a service connection request transmitted from the user computer 200, establishes a connection with the corresponding service according to the authentication key information transmitted, and provides the provided service to the corresponding user computer. Provided at 200. This authentication server 300 will be described in more detail with reference to FIG. 3.

3 is a block diagram schematically illustrating an authentication server according to an exemplary embodiment of the present invention. As shown, the authentication server 300 according to the present invention, for example, is a kind of web service server 400 that processes the service and user authentication according to the service providing request transmitted from the user computer 200 is connected to the Internet. In this case, the authentication module providing unit 310 for providing a corresponding service authentication module 101 in response to a request for providing a service from the user computer 200, and authentication information for storing service authentication key information and user authentication information for each user. Request an authentication key for providing a corresponding service according to the database 320 and the service provision request transmitted from the user computer 200, and receive the corresponding authentication key to refer to the authentication information database 320 to perform service and user authentication. The authentication processing unit 330 for processing and the authentication information processed authentication is transmitted to the corresponding service server 400, which is provided from the service server 400 It is configured to receive the service including the service processor 240 to provide to the user computer (200). In addition, communication means for transmitting and receiving data with a plurality of user computers 200 and the service server 400 is provided.

The authentication module providing unit 210 establishes a connection by receiving a connection request from the user computer 200, receives the authentication processing service registration request, and provides the service authentication module 101 to the corresponding user computer 200. The authentication module providing unit 310 requests input of personal identification information such as an ID and a password of a corresponding user according to an authentication processing service registration request. When the personal identification information is transmitted from the user computer 200, the authentication module providing unit 310 registers as a member. The service authentication module 101 is provided to the user computer 200, and the user computer 200 stores the service authentication module 101 in the smart card 100 of the connected user.

For example, the authentication information database 320 may be a storage device such as a hard disk, which is a mass storage medium, and authentication key information of a service registered by a user is stored for each user identification information. The authentication information database 320 in which the authentication key information is stored is accessed and controlled by the authentication processing unit 330.

The authentication processor 330 receives a service providing request including user identification information and service selection information transmitted from the user computer 200 on which the service authentication module 101 is driven, and authenticates the service use to the corresponding user computer 200. Request authentication key information. The authentication key providing unit 120 of the service authentication module 101 transmits authentication key information corresponding to the corresponding service to the authentication processing unit 330 through the user computer 200 according to the authentication key request, and receives the authentication key processing unit. The authentication process is performed by comparing the authentication key information and the authentication key stored in the authentication key information database. When the authentication process is completed, the authentication result is transmitted to the service server 400.

The service processor 340 provides a service provided from the service server 400 to the user computer 200 according to the authentication result processed by the authentication processor 330. The service processor 340 receives service data in a predetermined packet unit provided from the service server 400 and relays the service data to the user computer 200 that has applied for the corresponding service.

In addition, the service processing unit 340 provides access path information of the corresponding service server 400 so that the user computer 200 can directly connect to the service server 400 through a network including the Internet and receive the service. You may.

According to an additional aspect of the present invention, the authentication server 300 according to the present invention stores the authentication key information of the service added in response to a new service addition request from the user computer 200 for each user in the authentication information database 320, The service update unit 350 may further include a service update unit 350 that provides an update file of the corresponding service to the user computer 200 according to an update request of a service already registered from the service server 400.

When the service update unit 350 receives a new service addition request from the user, the service update unit 350 receives the authentication key information from the corresponding service server 400, stores the registration information in the authentication information database 320, and operates the user computer 200. By transmitting to the service update processing unit 180 of the service authentication module 101 to register the new service. In addition, the service server 400 updates the authentication key information of the already registered service according to the corresponding service update notification.

When the user accesses the new service server 400 through the user computer 200 and applies for new service registration, and requests the service update processing unit 180 to register the new service, the service update processing unit 180 requests the service server. Request service use authentication and user authentication information to 400. The service server 400 transmits the authentication key information according to the service provision to the service updater 350 of the authentication server 300, and the service updater 350 transmits the corresponding authentication key information to the authentication information database 320. The service update processing unit 180 of the service authentication module 101 stores and registers the corresponding authentication key information in the authentication key database 110.

In addition, the service update unit 350 receives the update data provided from the service server 400 when the update of the service is already registered service is provided to the user computer 200 to execute the update of the service. This update process is the same as the general software update in the technical context, the detailed description is omitted.

According to another embodiment of the present invention, the smart card 100 of the service authentication processing system according to the present invention may be a SIM card embedded in or inserted into a personal terminal that is always possessed by a user such as a mobile communication terminal or a PDA. In addition, the mobile terminal may be provided with a service provided from an operator server through mobile data communication. The service authentication processing system using the mobile terminal and the SIM card will be described in more detail with reference to FIG. 4.

4 is a schematic diagram schematically showing a service authentication processing system according to another embodiment of the present invention. As shown, the service authentication processing system according to another embodiment of the present invention is a service authentication module that stores authentication key information of a plurality of services and provides an authentication key of a corresponding service according to a service connection request input from a user ( It includes a SIM card 500 is stored 101, and transmits the authentication key information accessed by the service authentication module 101 to the authentication server 700 through the mobile communication network, and provides the service of the service authentication process to the user Request the authentication key information of the corresponding service according to the mobile terminal 600 and the service connection request transmitted from the mobile terminal 600, and establishes a connection with the corresponding service according to the transmitted authentication key information, the service provided Authentication server 700 provided to the mobile terminal 600, and the corresponding service according to the authentication provided from the authentication server 700 authentication server 700 It is configured to include a service server 800 to provide. In addition, the authentication server 700 may include a communication server for communicating with the Internet network and the mobile communication network.

A Subscriber Indetification Module (SIM) card is a small card that fits into and fits into the slot behind the mobile terminal 600. In general, it is not used for CDMA but is used as a standard for GSM. However, as the mobile terminal 600 becomes a multimedia device and an authentication service technology using the same develops, it is expected that the SIM card 500 will be applied to most devices in the future. For example, China Unicom of China has introduced a mobile terminal 600 that supports SIM cards in CDMA. One advantage of such a SIM card 500 is that if only one SIM card 500 is inserted into any terminal, it can be used as its own terminal without subscriber authentication.

This is because the SIM card 500 has subscriber information. This is not only applied to the phone but also more secure, so it is highly useful in electronic commerce. Therefore, the SIM card 500 insertable terminal of this concept will be basically provided in the WCDMA service.

The present invention is to carry out the authentication process of the various services by mounting the service authentication module 101 in such a SIM card (500). The SIM card 500 according to another aspect of the present invention implements the functions of the smart card 100 described with reference to FIGS. 1 and 2 in a form that can be used in the mobile terminal 600, and a service mounted therein. Since only the user computer 200 and the mobile terminal 600 are different in an environment in which the authentication module 101 is driven, the detailed description thereof will be omitted.

The mobile terminal 600 may be, for example, a personal mobile terminal 600 such as a mobile communication terminal or a PDA, and is provided by a service authentication module 101 mounted and driven in a SIM card 500 that is embedded or detached. The access authentication key information is transmitted to the authentication server 700 through the mobile communication network, and the service authentication service is provided to the user. Looking at the configuration of such a mobile terminal 600,

The mobile terminal 600 includes a display unit for displaying an input unit, a menu, and an operation state, a display driver for outputting graphic data to the display unit, a wireless communication unit for extracting voice and data signals from a radio signal transmitted and received through an antenna, and a wireless unit. And an audio input / output circuit for inputting and outputting a voice call signal from the communication unit through a microphone and a speaker, an audio reproducing unit, an audio output unit, a memory, and a general controller.

The input unit includes a plurality of numeric keys, character keys, and function keys, and a display unit, which is usually a liquid crystal display, may have a conventional well-known configuration. The display driver displays graphic data for providing visual information to the user and display data including a backlight control signal through the display.

The wireless communication unit also includes an antenna and an RF circuit for communication with the base station. In this specification, the wireless communication unit is interpreted to cover not only various versions of CDMA but also existing methods such as cellular, GSM, and W-CDMA, as well as mobile communication. The audio input / output circuit processes the digital voice data, i.e., the voice call signal into an analog voice signal or vice versa, and an audio amplification circuit or filter that amplifies the digital voice data into an amplification gain value of the voice call signal input and output according to the control signal of the controller. It is a known configuration including an additional circuit such as.

The baseband circuit of the wireless communication unit and most circuits of the control unit are commercially provided as a single integrated circuit. This integrated circuit, commonly referred to as an MSM chip, includes internally dedicated hardware for processing communications, a digital signal processor and a general purpose microprocessor. Logically they control the entire system in accordance with voice and data communication control and operation signals or operating conditions input from the input.

 According to a characteristic aspect of the present invention, the controller drives the service authentication module 101 stored in the SIM card 500 according to a driving command of the service authentication module 101 of the user, and guides the guide program of the service authentication module 101. Run it and give it to the user.

When a user inputs a service providing request including service selection information using a guide program, the mobile terminal 600 establishes a connection to the authentication server 700 and provides service authentication key information necessary for using the corresponding service. It receives from the authentication module 101 and transmits to the authentication server 700. The authentication server 700 processes service use authentication through the received service authentication key information, and provides a service provided from the service server 800 to the mobile terminal 600. The mobile terminal 600 receives a provided service and provides it to a user.

The audio reproducing unit includes, for example, a sound source reproducing chip such as a YAMAHA chip for reproducing a ringtone or a DSP chip for reproducing an MP3. The audio reproducing unit outputs the audio reproducing unit by reproducing it from various sound sources such as reproducing a ringtone, an effect sound, or a music file. The audio output unit amplifies and outputs various reproduction sounds such as a ring tone, an effect sound, or a music file reproduced from the audio reproduction unit according to an amplification gain value according to a control signal output from the controller.

The memory includes a RAM area for temporarily storing data generated during a control operation of the mobile communication terminal, a ROM area for storing a driving program for controlling the operation of the mobile communication terminal and basic information thereof, and a user interface provided in the mobile communication terminal. (U / I: USER INTERFACE) or a data area capable of storing data generated by the user application and the user application.

The mobile communication network may be a mobile terminal 600, for example, a communication network using existing mobile communication technologies such as CDMA, GPS, PCS, and WCDMA, as well as mobile communication methods to come. The mobile communication network is provided by a mobile communication provider and serves as a bridge for relaying data transmission and reception between the mobile terminal 600 and the authentication server 700. The mobile terminal 600 may access the authentication server 700 through the mobile communication network, that is, the gateway of the mobile communication company.

The communication server 500 may be a communication server 500 capable of transmitting and receiving data according to various communication protocols including, for example, the Internet, and a web service for connecting to the Internet according to a characteristic aspect of the present invention. The server 800 may be a WAP or Brew server, which is one of wireless Internet communication protocols used in a mobile communication network.

The authentication server 700 requests authentication key information of a corresponding service according to a service connection request transmitted from the mobile terminal 600, establishes a connection with the corresponding service according to the authentication key information transmitted, and provides the provided service with the corresponding mobile. Provided to the terminal 600. This authentication server 700 will be described in more detail with reference to FIG. 5.

5 is a block diagram schematically showing an authentication server according to another embodiment of the present invention. As shown, the mobile communication unit 710 for transmitting and receiving data to and from the mobile terminal 600 and the wireless communication network according to the present invention, the service authentication module 101 in accordance with the request for providing a service from the mobile terminal 600 The authentication module providing unit 720 for providing a service, an authentication information database 730 for storing service authentication key information and user authentication information for each user, and providing a corresponding service according to a service providing request transmitted from the mobile terminal 600. Requesting an authentication key for receiving the authentication key, the authentication processing unit 740 for processing the service and user authentication with reference to the authentication information database 730, and transmits the authentication information processed authentication to the service server 800 The mobile terminal 600 may receive a service provided from the service server 800 and execute a format suitable for the mobile terminal 600 (for example, executable in the mobile terminal 600). Format) to provide a service processing unit 750 for conversion.

The mobile communication unit 710 is, for example, a network card that transmits and receives data with the mobile terminal 600 connected to the authentication server 700 through a communication server.

The authentication module providing unit 720 receives a connection request from the mobile terminal 600 through a wireless communication unit, establishes a connection, and receives an authentication processing service registration request and transmits the service authentication module 101 to the corresponding mobile terminal 600. To provide. According to the authentication processing service registration request, the authentication module providing unit 720 requests input of personal identification information such as an ID, a password, and a phone number of the mobile terminal 600 of the corresponding user, and thereby personal identification from the mobile terminal 600. When the information is transmitted, the user is registered as a member and provides the service authentication module 101 to the mobile terminal 600, and the mobile terminal 600 stores the service authentication module 101 in the SIM card 500 of the connected user.

For example, the authentication information database 730 may be a storage device such as a hard disk, which is a mass storage medium, and authentication key information of a service registered by a user is stored for each user identification information. The authentication information database 730 in which the authentication key information is stored is accessed and controlled by the authentication processing unit 740.

The authentication processor 740 receives a service providing request including user identification information and service selection information transmitted from the mobile terminal 600 on which the service authentication module 101 is driven, and authenticates the service use to the corresponding mobile terminal 600. Request authentication key information. The authentication key providing unit 120 of the service authentication module 101 transmits authentication key information corresponding to the corresponding service to the authentication processing unit 740 through the mobile terminal 600 according to the authentication key request, and receives the authentication key processing unit. The authentication process is performed by comparing the authentication key information and the authentication key stored in the authentication key information database. When the authentication process is completed, the authentication result is transmitted to the service server 800.

The service processor 750 transmits the authenticated authentication information to the corresponding service server 800, receives the service provided from the service server 800, and converts the service information into a format suitable for the mobile terminal 600. The service processor 750 receives service data in a predetermined packet unit provided from the service server 800, converts the service data into an appropriate format for the mobile terminal 600, and applies the corresponding format data through the mobile communication network. It provides a relay to one mobile terminal 600.

In addition, the service processing unit 750 provides the connection path information of the wireless communication network of the corresponding service server 800 so that the mobile terminal 600 can be directly connected to the service server 800 through the wireless Internet to receive the service. You may.

According to an additional aspect of the present invention, the authentication server 700 according to the present invention stores the authentication key information of the service added in response to the new service addition request from the mobile terminal 600 for each user in the authentication information database 730, The service updater 760 may further include a service update unit 760 that provides an update file of the corresponding service to the mobile terminal 600 according to an update request of a service that is already registered from the service server 800.

When the service update unit 760 receives a new service addition request from the user, the service update unit 760 receives the corresponding authentication key information from the corresponding service server 800, stores the registration information in the authentication information database 730, and operates the mobile terminal 600. By transmitting to the service update processing unit 180 of the service authentication module 101 to register the new service. In addition, the service server 800 updates the authentication key information of the already registered service according to the corresponding service update notification.

When the user connects to the new service server 800 through the mobile terminal 600 to apply for new service registration and requests the service update processor 180 to register the new service, the service update processor 180 requests the service server. In step 800, service use authentication and user authentication information are requested. The service server 800 transmits the authentication key information according to the service provision to the service updater 760 of the authentication server 700, and the service updater 760 transmits the corresponding authentication key information to the authentication information database 730. The service update processing unit 180 of the service authentication module 101 stores and registers the corresponding authentication key information in the authentication key database 110.

In addition, the service updater 760 executes the service update by receiving the update data provided from the service server 800 and providing the update data provided from the service server 800 to the mobile terminal 600 when an update of the service that has already been registered. This update process is the same as the general software update in the technical context, the detailed description is omitted.

The service authentication processing system according to the present invention has an advantage of easily handling authentication of various services by storing a plurality of service authentication key information in one smart card and authenticating the corresponding service through a service authentication module.

In addition, there is an advantage that the user can be easily provided with authentication and services by providing a guide program that provides the basic information necessary for the user to use a smart card for the authentication of various services.

In addition, by storing a plurality of service authentication key information in the SIM card embedded in or inserted into the mobile terminal and authenticates the corresponding service through the service authentication module, authentication of various services can be easily handled through the mobile terminal using the mobile communication network. Has the advantage.

On the other hand, the present invention has been described with reference to the embodiments shown in the drawings but this is only exemplary, those skilled in the art will understand that various modifications and equivalent other embodiments are possible therefrom. . Therefore, the true technical protection scope of the present invention should be defined only by the appended claims.

Claims (20)

  1. A smart card that stores authentication key information of a plurality of services and stores a service authentication module for providing an authentication key of a corresponding service according to a service connection request input from a user;
    A user computer for transmitting and receiving data with the smart card, transmitting authentication key information accessed by the service authentication module to an authentication server connected to a network including the Internet, and providing a service authenticated service to a user;
    An authentication server for requesting authentication key information of a corresponding service according to a service connection request transmitted from the user computer, establishing a connection with the corresponding service according to the transmitted authentication key information, and providing a provided service to the corresponding user computer;
    A service server for providing a corresponding service to an authentication server according to an authentication processing result provided from the authentication server;
    Service authentication processing system comprising a.
  2. The method according to claim 1, wherein the authentication key information is:
    And a service authentication key value, a user authentication pin value, a data encryption key value, and an information file for each service identification information.
  3. The method according to claim 2, wherein the authentication key information is:
    And a combination of time information provided from the service server and a unique number of the smart card or a combination of time information provided from the service server and an application ID for each service.
  4. The system of claim 1, wherein the service authentication module is:
    An authentication key database storing authentication key information for accessing one or more services;
    An authentication key providing unit for providing the authentication key information stored according to the authentication key request of the authentication server to the authentication server through the user computer;
    A service provider for providing a service provided from the service server to a user;
    An electronic wallet processing unit including an electronic wallet processing unit for processing payment and charging of cyber money for electronic commerce processing, and a transaction history providing unit configured to store and manage payment or charging details according to a user's request by the electronic wallet processing unit;
    Service authentication processing system comprising a.
  5. The method of claim 1, wherein the service is:
    Service authentication processing system, characterized in that any one or more of an electronic payment service, a multimedia providing service including a game / music / video, a messenger, a bookmark connection service.
  6. The system of claim 1, wherein the service authentication module is:
    A personal setting database storing personal setting data of services provided by a plurality of service servers;
    In response to a request for providing a multimedia service input from a user, the authentication key information of the multimedia service is transmitted to a corresponding service server, and a service provided from the service server is provided, but the corresponding service is accessed by accessing personal setting data set in the personal setting database. A multimedia service processor configured to set up;
    Service authentication processing system further comprises.
  7. The method according to claim 6, wherein the service authentication module is:
    And a messenger processing unit which transmits authentication key information to a service server of a messenger according to a messenger service providing request input from a user, and provides a messenger service provided from a service server.
  8. The method of claim 7, wherein the service authentication module is:
    A service update processing unit for storing an authentication key of a new service provided from the authentication server or updating data set according to an update file in response to a request for adding a new service input from a user or an update request for a service registered from the authentication server. Service authentication processing system comprising a.
  9. The system of claim 1, wherein the authentication server is:
    An authentication module provider for providing a corresponding service authentication module in response to a request for providing a service from the user computer;
    An authentication information database storing service authentication key information and user authentication information for each user;
    An authentication processing unit for requesting an authentication key for providing a corresponding service according to a service providing request transmitted from the user computer, receiving the corresponding authentication key, and processing a service and user authentication with reference to the authentication information database;
    A service processor which transmits the authenticated authentication information to a corresponding service server and receives a service provided from the service server and provides the received service to the user computer;
    Service authentication processing system comprising a.
  10. The system of claim 9, wherein the authentication server is:
    And a service update unit for providing an authentication key of a corresponding service or providing an update file to a request for adding a new service or an update request for a registered service from the user computer.
  11. The authentication key information of a plurality of services is stored and includes a SIM card that stores a service authentication module for providing the authentication key of the service in response to a service connection request input from the user, the authentication key information accessed by the service authentication module A mobile terminal for transmitting the service to the authentication server through a mobile communication network and providing a service authenticated service to a user;
    An authentication server for requesting authentication key information of a corresponding service according to a service connection request transmitted from the mobile terminal, establishing a connection with the corresponding service according to the transmitted authentication key information, and providing a provided service to the mobile terminal;
    A service server for providing a corresponding service to an authentication server according to the authentication provided from the authentication server;
    Service authentication processing system comprising a.
  12. The method according to claim 11, wherein the authentication key information is:
    And a service authentication key value, a user authentication pin value, a data encryption key value, and an information file for each service identification information.
  13. The method according to claim 12, wherein the authentication key information is:
    And a combination of time information provided from the service server and a unique number of the SIM card, or a combination of time information provided from the service server and an application ID for each service.
  14. The system of claim 11, wherein the SIM card is:
    The service authentication processing system, characterized in that detachable to the mobile terminal.
  15. The system of claim 11, wherein the service authentication module is:
    An authentication key database storing authentication key information for accessing one or more services;
    An authentication key provider for providing stored authentication key information to the authentication server according to an authentication key request of the authentication server of the mobile terminal;
    A service provider for providing a service provided from the service server to a user;
    An electronic wallet processing unit including an electronic wallet processing unit for processing payment and charging of cyber money for electronic commerce processing, and a transaction history providing unit configured to store and manage payment or charging details according to a user's request by the electronic wallet processing unit;
    Service authentication processing system comprising a.
  16. The method of claim 11, wherein the service is:
    Service authentication processing system, characterized in that any one or more of an electronic payment service, a multimedia providing service including a game / music / video, a messenger, a bookmark connection service.
  17. The system of claim 15, wherein the service authentication module is:
    A personal setting database for storing personal setting data of services provided by a plurality of service servers;
    In response to a request for providing a multimedia service input from a user, the authentication key information of the multimedia service is transmitted to a corresponding service server, and a service provided from the service server is provided. Service authentication processing system further comprises a multimedia service processing unit for setting.
  18. The system of claim 17, wherein the service authentication module is:
    And a messenger processing unit which transmits authentication key information to a service server of a messenger according to a messenger service providing request input from a user, and provides a messenger service provided from a service server.
  19. The system of claim 11, wherein the authentication server is:
    A mobile communication unit for transmitting and receiving data through the wireless communication network with the mobile terminal;
    An authentication module providing unit providing a corresponding service authentication module in response to a request for providing a service from the mobile terminal;
    An authentication information database storing service authentication key information and user authentication information for each user;
    An authentication processing unit for requesting an authentication key for providing a corresponding service according to a service providing request transmitted from the mobile terminal, receiving the corresponding authentication key, and processing service and user authentication with reference to the authentication information database;
    A service processing unit which transmits the authenticated authentication information to a corresponding service server, receives a service provided from the service server, converts the service information into a format executable by the mobile terminal, and provides the service;
    Service authentication processing system comprising a.
  20. The system of claim 19, wherein the authentication server is:
    And a service update unit for providing an authentication key of the corresponding service or providing an update file to the request for adding a new service or request for updating a registered service from the mobile terminal.
KR1020060127359A 2006-12-13 2006-12-13 System for sevice authentication KR100856514B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020060127359A KR100856514B1 (en) 2006-12-13 2006-12-13 System for sevice authentication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020060127359A KR100856514B1 (en) 2006-12-13 2006-12-13 System for sevice authentication

Publications (2)

Publication Number Publication Date
KR20080054790A KR20080054790A (en) 2008-06-19
KR100856514B1 true KR100856514B1 (en) 2008-09-16

Family

ID=39801690

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020060127359A KR100856514B1 (en) 2006-12-13 2006-12-13 System for sevice authentication

Country Status (1)

Country Link
KR (1) KR100856514B1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013169053A1 (en) * 2012-05-11 2013-11-14 주식회사 씽크풀 Digital system for carrying out financial transactions, pair system making pair with the digital system, and financial transaction method
KR20140029015A (en) * 2012-08-31 2014-03-10 에스케이텔레콤 주식회사 Method and apparatus for servicing health information by using healthcare
KR20140077727A (en) * 2012-12-14 2014-06-24 (주)더블유랩 Server and method for security communication using image code

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101954450B1 (en) * 2011-09-05 2019-05-31 주식회사 케이티 Method for Verification of Embedded UICC using eUICC Certificate, Method for Provisioning and MNO Switching, eUICC, MNO System and recording medium for the same
KR101383181B1 (en) * 2011-10-10 2014-04-22 유비벨록스(주) Contents server related to lever position and door open system
KR101357367B1 (en) * 2011-10-26 2014-02-04 에스케이씨앤씨 주식회사 Method and system for managing authentication information using SE
KR101460179B1 (en) 2012-11-28 2014-11-10 에스케이씨앤씨 주식회사 Method for Temporary Payment Card Set-up and Mobile Device using the same
KR101416817B1 (en) * 2012-11-29 2014-07-08 에스케이씨앤씨 주식회사 Apparatus and method for e-wallet services using a two-factor authentication

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH1031626A (en) * 1996-07-17 1998-02-03 Nippon Telegr & Teleph Corp <Ntt> Ic card system
KR0149985B1 (en) * 1994-12-31 1999-05-15 김광호 A portable card and its usage
KR20020063350A (en) * 2001-01-27 2002-08-03 에스케이 텔레콤주식회사 Mobile phone with financial information within UIM card, and method used therein
KR20060027589A (en) * 2004-09-23 2006-03-28 주식회사 케이티 Combi-smart card system capable of changing data on magnetic stripe and multiple membership card service method using the same
KR20060104046A (en) * 2005-03-29 2006-10-09 씨제이인터넷 주식회사 Method and system of providing personalized on-line service using an authentication card

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR0149985B1 (en) * 1994-12-31 1999-05-15 김광호 A portable card and its usage
JPH1031626A (en) * 1996-07-17 1998-02-03 Nippon Telegr & Teleph Corp <Ntt> Ic card system
KR20020063350A (en) * 2001-01-27 2002-08-03 에스케이 텔레콤주식회사 Mobile phone with financial information within UIM card, and method used therein
KR20060027589A (en) * 2004-09-23 2006-03-28 주식회사 케이티 Combi-smart card system capable of changing data on magnetic stripe and multiple membership card service method using the same
KR20060104046A (en) * 2005-03-29 2006-10-09 씨제이인터넷 주식회사 Method and system of providing personalized on-line service using an authentication card

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013169053A1 (en) * 2012-05-11 2013-11-14 주식회사 씽크풀 Digital system for carrying out financial transactions, pair system making pair with the digital system, and financial transaction method
KR20140029015A (en) * 2012-08-31 2014-03-10 에스케이텔레콤 주식회사 Method and apparatus for servicing health information by using healthcare
KR20140077727A (en) * 2012-12-14 2014-06-24 (주)더블유랩 Server and method for security communication using image code

Also Published As

Publication number Publication date
KR20080054790A (en) 2008-06-19

Similar Documents

Publication Publication Date Title
US10515352B2 (en) System and method for providing diverse secure data communication permissions to trusted applications on a portable communication device
US9418362B2 (en) Amplifying radio frequency signals
US20180218358A1 (en) Trusted service manager (tsm) architectures and methods
KR101859558B1 (en) Apparatuses and methods for operating a portable electronic device to conduct mobile payment transactions
CN105391840B (en) Automatically create destination application
US10223096B2 (en) Logging operating system updates of a secure element of an electronic device
US10325254B2 (en) Communication terminal and communication method using plural wireless communication schemes
US9123041B2 (en) System and method for presentation of multiple NFC credentials during a single NFC transaction
US10699267B2 (en) Secure account provisioning
AU2014266860B2 (en) Methods and systems for provisioning payment credentials
KR101820573B1 (en) Mobile-merchant proximity solution for financial transactions
US20170003954A1 (en) On-Board Applet Migration
US9886688B2 (en) System and method for secure transaction process via mobile device
EP2455923B1 (en) NFC transaction server
US8359070B1 (en) Dynamic smart card application loading
CN104778794B (en) mobile payment device and method
RU2537795C2 (en) Trusted remote attestation agent (traa)
CN106327175B (en) Mobile payment application architecture
JP5562965B2 (en) Electronic payment application system and payment authentication method
CN101828205B (en) Wirelessly executing financial transactions
US7562813B2 (en) System and method for activating telephone-based payment instrument
US7458510B1 (en) Authentication of automated vending machines by wireless communications devices
US8285329B1 (en) Mobile device-based control of smart card operation
JP5562964B2 (en) Contactless authentication system and method used for settlement
JP4874288B2 (en) Data storage and access to mobile devices and user modules

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
GRNT Written decision to grant
FPAY Annual fee payment

Payment date: 20110830

Year of fee payment: 4

FPAY Annual fee payment

Payment date: 20120806

Year of fee payment: 5

LAPS Lapse due to unpaid annual fee