KR101140223B1 - Device for Processing a Payment - Google Patents

Device for Processing a Payment Download PDF

Info

Publication number
KR101140223B1
KR101140223B1 KR1020050076511A KR20050076511A KR101140223B1 KR 101140223 B1 KR101140223 B1 KR 101140223B1 KR 1020050076511 A KR1020050076511 A KR 1020050076511A KR 20050076511 A KR20050076511 A KR 20050076511A KR 101140223 B1 KR101140223 B1 KR 101140223B1
Authority
KR
South Korea
Prior art keywords
information
token
payment
wireless terminal
predetermined
Prior art date
Application number
KR1020050076511A
Other languages
Korean (ko)
Other versions
KR20070021826A (en
Inventor
김재형
Original Assignee
주식회사 비즈모델라인
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 비즈모델라인 filed Critical 주식회사 비즈모델라인
Priority to KR1020050076511A priority Critical patent/KR101140223B1/en
Publication of KR20070021826A publication Critical patent/KR20070021826A/en
Application granted granted Critical
Publication of KR101140223B1 publication Critical patent/KR101140223B1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction

Abstract

The present invention relates to a payment processing method and system, wherein a predetermined token generation program for at least one or more payment means information, payment means owned customer wireless terminal information and a token generation program provided in the wireless terminal in a predetermined information storage means; A payment means information storage step of storing information in a predetermined storage medium in association with the information; When the payment means-owning customer uses the payment means for payment processing, the payment means-owning customer is provided in the wireless terminal using a predetermined code (or pin number or password) input through a predetermined input means in the wireless terminal. A token generation program driving step of driving the generated token generation program; A token code generation step of generating a predetermined token code by a token generation program provided in the wireless terminal; A predetermined payment approval request text including at least one predetermined token code information generated by the wireless terminal and at least one wireless terminal information and payment information in a predetermined payment terminal (or the payment means owned customer wireless terminal or wired terminal). Or a payment approval request step of generating data) and requesting a predetermined payment approval using the generated payment approval request full text (or data); An information checking step of confirming wireless terminal information included in the payment approval request message (or data) by a predetermined information checking means when the predetermined information receiving means receives the payment approval request message (or data); Confirm the token generation program information associated with the confirmed wireless terminal information in association with the storage medium (or storage medium operating means) in a predetermined authentication means, and to the received token code using the token generation program information Token code authentication step of authenticating the validity; And a payment processing step of performing a payment processing corresponding to the payment approval request by referring to the payment means information associated with the wireless terminal information in a predetermined payment processing means according to the result of the validation of the token code. Characterized in that made.
Thereby, more secure financial transactions are possible through predetermined token codes volatilized by time and / or by certain random variables, and financial transaction means information (e.g., financial account information, credit card information, debit card information, cash). More convenient and safe financial transactions are possible without exposing card information, check card information, prepaid card information, electronic money information, etc.).
Payment method, wireless terminal, token information

Description

Device for Processing a Payment

1 is a diagram illustrating a token code based payment processing system according to the present invention.

2 illustrates a configuration of a system for providing a predetermined token agent to the customer wireless terminal according to an embodiment of the present invention.

3 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.

4 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.

5 is a diagram illustrating an exemplary process of providing and mounting a token agent program to a customer wireless terminal according to an exemplary embodiment of the present invention.

6 is a diagram illustrating an information configuration of wireless terminal information stored in the storage medium according to an embodiment of the present invention.

7 is a diagram illustrating an information configuration of token agent information stored in the storage medium according to an embodiment of the present invention.

8 is a diagram illustrating an information configuration of customer information stored in the storage medium according to an embodiment of the present invention.

9 is a diagram illustrating an information configuration of payment means information stored in the storage medium according to an embodiment of the present invention.

10 is a diagram illustrating a payment terminal or a customer wireless terminal for payment processing based on a token code according to an embodiment of the present invention.

11 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

12 is a diagram illustrating a token code structure according to an embodiment of the present invention.

13 is a diagram illustrating a functional configuration of a payment terminal 145 according to an embodiment of the present invention.

14 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

15 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

16 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

17 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

18 illustrates an implementation process of applying a token code based payment process to a card settlement system according to an embodiment of the present invention.

19 illustrates a full payment processing request for token code based payment processing according to an embodiment of the present invention.

20 illustrates an implementation process in which token code based payment processing is applied to an online payment system according to an embodiment of the present invention.

21 illustrates an implementation process in which token code-based payment processing is applied to a wireless payment system according to an embodiment of the present invention.

<Description of main parts of drawing>

100: token agent providing means 105: information storage means

110: storage medium 115: information receiving means

120: information verification means 125: authentication means

130: payment processing means 135: storage medium

140: information storage means 145: payment terminal

150: payment network

The present invention relates to at least a predetermined storage medium by linking at least one or more payment means information, payment means owned customer wireless terminal information and predetermined token generation program information for the token generation program provided in the wireless terminal in a predetermined information storage means; Storing and generating a token code for generating a predetermined token code through the token generation program provided in the payment means owning customer wireless terminal when the payment means owning customer processes the payment using the payment means; By generating a predetermined payment approval request full text (or data) including at least one token code, the wireless terminal information and payment information, and requesting a predetermined payment approval, by referring to the full payment approval request text (or data) Regarding payment processing method and system to perform authentication processing using token code Will.

As the Internet infrastructure and financial transaction infrastructure evolved, user authentication became very important for financial transactions and website access.

In particular, phishing is used to extract information about a person's financial transactions (e.g., authentication number, credit card number, account information, etc.) by eliciting or linking to an e-mail sent from a website such as a financial institution. To steal your domain or trick your domain name system (DNS) name to mislead users into real sites, pharming to steal personal information such as personal IDs, passwords, and account information, or from your keyboard As keyboard hacking to hack input key input information (eg, personal ID, password, account information, etc.) becomes a problem, a safer and more efficient method for financial transactions is being sought.

In addition, in general, since a plurality of authentication information (for example, ID and password) required for a financial transaction login or financial transaction do not exist, the user had to deal with damages if they were leaked to others through hacking or the like. .

The present invention was derived to solve the above problems, and links at least one or more payment means information, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal Information storage means for storing in a predetermined storage medium, and a predetermined code (or pin number or password) input through a predetermined input means when the payment-owning customer owns the payment means using the payment means, A wireless terminal for driving a token generating program and generating a predetermined token code through the token generating program, and a predetermined including at least one of predetermined token code information, wireless terminal information, and payment information generated by the wireless terminal. Generate the payment authorization request text (or data) of the A payment terminal for requesting a predetermined payment approval using a request message (or data), information receiving means for receiving the payment approval request message (or data), and wireless included in the payment approval request message (or data). Information confirmation means for confirming terminal information and the token generation program information associated with the confirmed wireless terminal information in association with the storage medium (or storage medium operation means), and the token generation program information using the token generation program information. An authentication means for authenticating the validity of the received token code and a result of the payment processing corresponding to the payment approval request with reference to the payment means information associated with the wireless terminal information according to the authentication result of the token code; It is an object of the present invention to provide a payment processing system including a processing means.

In addition, the present invention, by storing at least one payment means information, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal in a predetermined storage medium, When the payment means-owning customer processes payment using the payment means, a predetermined payment approval request message (or data) transmitted from a predetermined payment terminal (or server) -token generated by the token generation program included in the wireless terminal Receive a predetermined payment approval request full text (or data) including code information and at least one wireless terminal information and payment information, and confirm wireless terminal information included in the full payment approval request text (or data), In connection with the storage medium (or storage medium operating means), the token generation program associated with the confirmed wireless terminal information Checks gram information, authenticates the validity of the received token code using the token generation program information, and refers to the payment means information associated with the wireless terminal information according to the validation result of the token code. An object of the present invention is to provide a payment processing device that performs payment processing corresponding to the payment approval request.

In addition, the present invention, in the member number (or card number) input area to generate a payment approval request full text including a payment processor means operator unique code, a customer wireless terminal number code and a predetermined token code generated by the customer terminal; The present invention provides a payment terminal apparatus for transmitting the generated payment approval request message to a server on a communication network.

In addition, the present invention, in connection with the server on the communication network, by using a predetermined code (or pin number or password) input by the user through a communication processing unit for receiving a predetermined token generation program and a predetermined key input unit, the token Drive a generation program, output the token code generated by the token generation program in conjunction with a predetermined output unit, or provide the generated token code to a predetermined terminal (or server) in conjunction with the communication processing unit. An object of the present invention is to provide a wireless terminal device having a control unit.

The payment processing method according to the present invention for achieving the above object, at least one or more payment means information in the predetermined information storage means and the payment means owned customer wireless terminal information and a predetermined token for the token generation program provided in the wireless terminal A payment means information storage step of storing generated program information in a predetermined storage medium and inputting the payment means information through a predetermined input means from the payment means owning customer wireless terminal when the payment means owning customer processes the payment using the payment means; A token generation program driving step of driving the token generation program provided in the wireless terminal using a predetermined code (or a pin number or a password), and a token generation program provided in the wireless terminal provides a predetermined token code. Generating token code generation step, and a predetermined payment terminal (or the number of payments) However, in the owning customer wireless terminal or a wired terminal), a predetermined payment approval request message (or data) including predetermined token code information generated by the wireless terminal and at least one of the wireless terminal information and payment information is generated, and The payment approval request step of requesting a predetermined payment approval by using the generated payment approval request full text (or data), and upon receiving the payment approval request full text (or data) from the predetermined information receiving means, the predetermined information checking means An information confirming step of confirming wireless terminal information included in the payment approval request message (or data); and in connection with the confirmed wireless terminal information in connection with the storage medium (or storage medium operating means) in a predetermined authentication means; Verify the generated token generating program information and validate the received token code using the token generating program information In accordance with the token code authentication step of authenticating and validity of the token code, a predetermined payment processing means performs payment processing corresponding to the payment approval request with reference to the payment means information associated with the wireless terminal information. Characterized in that it comprises a payment processing step.

According to the implementation method of this invention, it is preferable that the said payment process includes the payment process in offline, and / or the payment process in online.

According to the method of the present invention, the payment means, credit card payment means, debit card payment means, cash card payment means, check card payment means, prepaid card payment means, financial account payment means, electronic It is preferable to include at least one or more currency payment means.

According to the implementation method of the present invention, it is preferable that the payment terminal comprises a financial transaction automation processing device.

According to the present invention, the payment processing method may be configured to further include a token generating program providing step of providing a predetermined token generating program from a predetermined token generating program providing means to a predetermined payment means owning customer wireless terminal.

According to the present invention, in the payment processing method, predetermined payment processing history (or payment approval specialized text) data corresponding to the payment processing in a predetermined information transmission means, the payment terminal (or the payment means owned customer wireless terminal or wired) The terminal may be configured to further include an information transmission step for transmitting.

Preferably, the information transmitting step, the payment processing history (or payment approval professional) data via a predetermined relay server, such as a VAN company server to the payment terminal (or the customer owning the payment means wireless terminal or wired terminal) Characterized in that.

According to the present invention, the payment processing method, in a predetermined information storage means by linking the predetermined payment processing history (or payment approval professional) data corresponding to the payment processing with the payment means information (and / or customer information) The payment history storage step of storing in a predetermined storage medium may be further included.

According to the present invention, the payment processing method, at least one or more authentication information (or secret code) associated with the payment means from the payment terminal (or the payment means owned customer wireless terminal or wired terminal) to the payment processing means. The method may further include the step of transmitting and determining whether to perform the payment processing based on the authentication information (or secret code) in the payment processing means.

According to the present invention, in the payment processing method, when the payment means owned customer uses the payment means for payment processing, the payment terminal (or the payment means owned customer wireless terminal or wired terminal) in association with the wireless terminal information Outputting the at least one payment means information on the screen and the predetermined payment means to be used for payment processing from the payment means customer through the predetermined input means at the payment terminal (or the payment means owning customer wireless terminal or wired terminal); The method may further include receiving payment method selection information.

According to the present invention, the payment processing method, when using the payment means online, the step of receiving predetermined payment information from the server on the communication network in the payment terminal (or the customer owns wireless terminal or wired terminal owning the payment method); It can be configured to include more.

According to the exemplary embodiment of the present invention, the token code authentication step may include generating a predetermined token authentication code corresponding to the received token code by referring to the token generation program information associated with the wireless terminal information in the authentication means. Token authentication code generation step and the token means in the authentication means by comparing the token code and the token authentication code may comprise a token code authentication step of authenticating the validity of the received token code.

On the other hand, the payment processing method according to the present invention, at least one or more payment means information in the predetermined information storage means, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal A payment means information storing step of storing the information in a predetermined storage medium in association with a predetermined code; A token generation program driving step of driving the token generation program provided in the wireless terminal, a token code generation step of generating a predetermined token code by the token generation program provided in the wireless terminal, and predetermined authentication; The wireless terminal information in association with the storage medium (or storage medium operating means) in a means; Confirm token generation program information associated with the token, and according to the token code authentication step of authenticating the validity of the received token code using the token generation program information, and according to the result of the validity authentication of the token code, predetermined payment processing means A payment processing step of performing a payment processing of the wireless terminal with reference to the payment means information associated with the wireless terminal information may be made.

According to the present invention, the payment processing method may be configured to further include receiving predetermined payment processing request information from a server (or device) on a network in the payment means owning customer wireless terminal.

According to the invention, the payment processing method may be configured to further include the step of confirming the information of the wireless terminal in connection with a server on the communication network in the authentication means.

According to the present invention, the payment processing method may be configured to further include a token generating program providing step of providing a predetermined token generating program from a predetermined token generating program providing means to a predetermined payment means owning customer wireless terminal.

According to the present invention, the payment processing method, information transmission step for transmitting a predetermined payment processing history (or payment approval professional) data corresponding to the payment processing in a predetermined information transmission means to the customer owning terminal of the payment means; It can be configured to include more.

According to the present invention, the payment processing method, in a predetermined information storage means by linking the predetermined payment processing history (or payment approval professional) data corresponding to the payment processing with the payment means information (and / or customer information) The payment history storage step of storing in a predetermined storage medium may be further included.

According to the invention, the payment processing method, further comprising the step of transmitting at least one or more authentication information (or secret code) associated with the payment means from the payment means owning customer wireless terminal to the payment processing means and the payment processing means The method may further include determining whether to perform the payment processing based on the authentication information (or secret code).

According to the present invention, the payment processing method, outputting at least one or more payment means information associated with the wireless terminal information in the payment means owned customer wireless terminal on the screen and predetermined in the payment means owned customer wireless terminal The method may further include receiving predetermined payment means selection information to be used for payment processing from the customer who owns the payment means through the input means of the.

According to an exemplary embodiment of the present invention, the token code authentication step may include generating, by the authentication means, a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal information. Token authentication code generation step and the token means in the authentication means by comparing the token code and the token code authentication may be made to include a token code authentication step of authenticating the validity.

In addition, the present invention is characterized in that it comprises a recording medium recording a computer-readable program for executing the at least one payment processing method described above.

On the other hand, the payment processing system according to the present invention for realizing the above-described payment processing method, at least one or more payment means information, the payment means owned customer wireless terminal information and a predetermined token for the token generation program provided in the wireless terminal Information storage means for storing the generated program information in a predetermined storage medium, and a predetermined code (or pin number or password) inputted through a predetermined input means when the payment-owning customer owns the payment means using the payment means. A token generating program, and generating a predetermined token code through the token generating program, and generating at least the predetermined token code information, the wireless terminal information, and the payment information generated by the wireless terminal. Generate a predetermined payment authorization request text (or data) including one or more; A payment terminal for requesting a predetermined payment approval using the established payment approval request text (or data), information receiving means for receiving the payment approval request text (or data), and the payment approval request text (or data). Information verifying means for confirming the included wireless terminal information, the token generating program information associated with the confirmed wireless terminal information in association with the storage medium (or storage medium operating means), and the token generating program information An authentication means for authenticating the validity of the received token code using the token means and a payment process corresponding to the payment approval request with reference to the payment means information associated with the wireless terminal information according to the validity authentication result of the token code. Characterized in that it comprises a payment processing means to perform.

According to the present invention, the payment processing system may be configured to further include a token generation program providing means for providing a predetermined token generation program to the payment means owned customer wireless terminal.

According to the present invention, the payment processing system, information for transmitting a predetermined payment processing history (or payment approval professional) data corresponding to the payment processing to the payment terminal (or a customer wireless terminal or wired terminal owned by the payment means). It may be configured to further include a transmission means.

Here, the information transmitting means may transmit the payment processing history (or payment approval specialized text) data to the payment terminal (or the payment means owned customer wireless terminal or wired terminal) via a predetermined relay server such as a VAN company server. have.

According to the present invention, the payment processing system stores the predetermined payment processing history (or payment approval text) data corresponding to the payment processing in a predetermined storage medium in association with the payment means information (and / or customer information). It may be configured to further include information storage means.

According to the embodiment of the present invention, the payment terminal further transmits at least one or more authentication information (or secret code) associated with the payment means to the payment processing means, wherein the payment processing means, the authentication It is characterized by determining whether or not to perform the payment process based on the information (or secret code).

According to an embodiment of the present invention, the payment terminal outputs at least one or more payment means information linked to the wireless terminal information on a screen, and is used for payment processing from the customer who owns the payment means through a predetermined input means. Characterized in that the predetermined payment means selection information input.

According to the exemplary embodiment of the present invention, when the payment means is used online, the payment terminal may receive predetermined payment information from a server on a communication network.

According to an embodiment of the present invention, the authentication means generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal information, and generates the token code and the token. Comparing the authentication code, characterized in that for authenticating the validity of the received token code.

On the other hand, the payment processing system according to the present invention, by storing at least one payment means information, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal predetermined storage Token generation using information storage means for storing in a medium and a predetermined code (or pin number or password) inputted through a predetermined input means when the payment means-owning customer uses the payment means for payment processing. In connection with the wireless terminal for driving a program, generating a predetermined token code through the token generation program, requesting a predetermined payment approval to the payment processing means on the communication network, and the storage medium (or storage medium operating means), Confirm token generation program information associated with the wireless terminal information, and generate the token generation program information An authentication means for authenticating the validity of the received token code using the token means and a payment process corresponding to the payment approval request with reference to the payment means information associated with the wireless terminal information according to the validity authentication result of the token code. Characterized in that it comprises a payment processing means to perform.

According to the present invention, the payment processing system may be configured to further include a token generating program providing means for providing a predetermined token generating program to the wireless terminal.

According to the present invention, the payment processing system may be configured to further include information transmission means for transmitting the predetermined payment processing history (or payment approval professional) data corresponding to the payment processing to the wireless terminal.

According to the embodiment of the present invention, the information transmitting means is characterized in that for transmitting the payment processing history (or payment approval full text) data to the wireless terminal via a predetermined relay server such as a VAN company server.

According to the present invention, the payment processing system stores the predetermined payment processing history (or payment approval text) data corresponding to the payment processing in a predetermined storage medium in association with the payment means information (and / or customer information). It may be configured to further include information storage means.

According to an embodiment of the present invention, the wireless terminal further transmits at least one or more authentication information (or secret code) associated with the payment means to the payment processing means, wherein the payment processing means is the authentication. It is characterized by determining whether to perform the payment process based on the information (or secret code).

Here, the wireless terminal outputs at least one or more payment means information linked to the wireless terminal information on a screen, and predetermined payment means selection information to be used for payment processing from the customer who owns the payment means through a predetermined input means. Can be input.

In addition, when using the payment means online, the wireless terminal may receive predetermined payment information from a server on a communication network.

According to an embodiment of the present invention, the authentication means generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal information, and generates the token code and the token. Comparing the authentication code, characterized in that for authenticating the validity of the received token code.

According to the present invention, each of the means provided in the payment processing system is provided in a single server (or device) or a plurality of servers (or devices).

On the other hand, the payment processing device for realizing the present invention, by connecting at least one or more payment means information, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal An information storage unit for storing in a storage medium of the storage device; and a predetermined payment approval request message (or data) transmitted from a predetermined payment terminal (or a server) when the payment means owning customer uses the payment means. An information receiving unit for receiving a predetermined token approval information (or data) including token code information generated by a token generation program provided in a terminal and at least one of the wireless terminal information and payment information, and the full payment approval request message An information confirmation unit for confirming wireless terminal information included in the data (or data), and the storage medium (or storage medium). Operating unit), the token generating program information associated with the confirmed wireless terminal information is confirmed, and an authentication unit for authenticating the validity of the received token code using the token generating program information and the token code of According to the validity authentication result, characterized in that it comprises a payment processing unit for performing a payment process corresponding to the payment approval request with reference to the payment means information associated with the wireless terminal information.

According to the present invention, the payment processing device may be configured to further include a token generation program providing unit for providing a predetermined token generation program to the payment means owned customer wireless terminal.

According to the present invention, the payment processing device, information for transmitting a predetermined payment processing history (or payment approval professional) data corresponding to the payment processing to the payment terminal (or the customer owning wireless terminal or wired terminal owning the payment means). It may be configured to further include a transmitter.

According to the present invention, the payment processing apparatus stores predetermined payment processing history (or payment approval text) data corresponding to the payment processing in a predetermined storage medium in association with the payment means information (and / or customer information). It can be configured to further include an information storage unit.

According to the embodiment of the present invention, the information receiving unit, characterized in that for receiving at least one or more authentication information (or secret code) associated with the payment means from the payment terminal (or server), the payment processing unit It is characterized by determining whether or not to perform the payment processing based on the authentication information (or secret code).

According to an embodiment of the present invention, the authentication unit generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal information, and generates the token code and token authentication. Comparing codes, it characterized in that the validity of the received token code is authenticated.

On the other hand, the payment processing device according to the present invention, by storing at least one or more payment means information, the payment means owned customer wireless terminal information and the predetermined token generation program information for the token generation program provided in the wireless terminal predetermined storage An information storage unit for storing in a medium, and a predetermined token code information from the customer-owned wireless terminal when the payment means-owning customer uses the payment means-token code generated by the token generation program included in the wireless terminal. Information-receiving unit for receiving information-, and in association with the storage medium (or storage medium operating means), confirms token generation program information associated with the wireless terminal, and uses the token generation program information to receive the received token code. According to the authentication unit for authenticating the validity and the validity of the token code, Group refer to wireless terminals information that the payment means information associated with and is characterized in that obtained by having a billing processing part for performing billing processing.

According to the present invention, the payment processing device may be configured to further include a token generation program providing unit for providing a predetermined token generation program to the payment means owned customer wireless terminal.

According to the present invention, the payment processing device may be configured to further include an information transmission unit for transmitting predetermined payment processing history (or payment approval text) data corresponding to the payment processing to the wireless terminal.

According to the present invention, the payment processing apparatus stores predetermined payment processing history (or payment approval text) data corresponding to the payment processing in a predetermined storage medium in association with the payment means information (and / or customer information). It can be configured to further include an information storage unit.

According to the embodiment of the present invention, the information receiving unit, characterized in that for receiving at least one or more authentication information (or secret code) associated with the payment means from the wireless terminal, the payment processing unit, the authentication information (Or secret code) characterized in that it is determined whether or not to perform the payment process.

According to an embodiment of the present invention, the authentication unit generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal information, and generates the token code and token authentication. Comparing codes, it characterized in that the validity of the received token code is authenticated.

According to the present invention, each of the components provided in the payment processing device is characterized in that it is provided in a single server (or device) or in a plurality of servers (or devices).

According to the present invention, the payment processing device is characterized by consisting of a single device (or server), or a plurality of devices (or server).

According to the invention, the payment processing device is characterized in that it comprises a recording medium recording a computer-readable program for performing the functions of the at least one or more device components described above.

On the other hand, the payment terminal device for realizing the present invention, in the member number (or card number) input area including a payment processing means operating provider unique code, customer wireless terminal number code and a predetermined token code generated by the customer terminal And a transmission unit for transmitting the payment approval request message generated by the text generation unit to a server on a communication network.

In addition, the payment terminal device is characterized in that it comprises a recording medium on which a program for executing the functions of the at least one device component described above is recorded.

On the other hand, a wireless terminal device for realizing the present invention, in connection with a server on a communication network, a predetermined code (or pin number or password) input by a user through a communication processing unit for receiving a predetermined token generation program and a predetermined key input unit. Drive the token generation program, output the token code generated by the token generation program in conjunction with a predetermined output unit, or output the token code generated in conjunction with the communication processing unit. Characterized in that the control unit provided to the terminal (or server) of the.

According to an embodiment of the present invention, the control unit, in conjunction with the communication processing unit, when providing the generated token code to a predetermined terminal (or server), characterized in that further providing the wireless terminal device information.

According to an embodiment of the present invention, the communication processing unit may further receive predetermined payment information from a server (or device) on the communication network.

According to the present invention, the wireless communication device is characterized in that it comprises at least one or more of a mobile phone, PDA, portable Internet phone, telematics.

According to the invention, the wireless communication device is characterized in that it comprises a recording medium on which a computer-readable program is recorded for executing the functions of at least one or more device components described above.

Meanwhile, a payment means information data file storing at least one payment means information, a payment means owned customer information data file storing the payment means owned customer information, and wireless terminal information of the payment means owned customer. A predetermined token generation program for the payment means-owned customer wireless terminal information data file and the payment means-owned customer wireless terminal that stores the payment means, or a token generation program for payment means payment program provided in the payment means-owned customer wireless terminal. And a token generating program information data file for storing information.

According to the present invention, the information storage medium includes at least the payment means information data file, the payment means owned customer information data file, the payment means owned customer wireless terminal information data file, and the token generation program information data file. Characterized in that one or more cross-processing and storing.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. In addition, terms to be described below are terms defined in consideration of functions in the present invention, which may vary according to a user's or operator's intention or custom. Therefore, the definition should be based on the contents throughout the present title.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In the present invention, each means constituting the payment processing system using the wireless terminal number is a program (e.g., each recorded on a recording medium provided in a predetermined server according to unique characteristics (or roles) defined in the means). A program comprising at least one function unit (Function) for performing the unique function (or role) of the means, and / or configured as an independent server performing the unique function defined in the means ( For example, a plurality of server systems interoperating with each other through a predetermined server-to-server interface) can be configured. The preferred embodiment of the present invention, which is implemented below, can be used to efficiently describe the technical components of the present invention. Are stored on a recording medium provided in a predetermined server and / or through a plurality of interoperable servers. Would be described as the display, but are not limited to the exemplary method of the device, if more than the embodiment in no way. In addition, the following embodiment uses an implementation method in which a predetermined token generation program is mounted on the customer wireless terminal, whereby the token generation program is referred to as a token agent and / or a token agent program for convenience. In addition, the terms used in the following embodiments will be used appropriately modified according to the field to which the token code-based payment processing according to the present invention is applied, whereby the present invention is not limited.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 illustrates a token code based payment processing system according to the present invention.

In more detail, FIG. 1 illustrates a connection between at least one payment means information, the payment means owning customer wireless terminal 1100 information, and predetermined token generation program information for a token generation program provided in the wireless terminal 1100. Information storage means 105 for storing in a storage medium of the storage medium, and a predetermined code (or pin number or password) inputted through a predetermined input means when the payment-owning customer owns the payment means using the payment means. In addition, a wireless terminal 1100 for driving a token generating program and generating a predetermined token code through the token generating program, predetermined token code information generated by the wireless terminal 1100 and the wireless terminal 1100 information. And generate a predetermined payment approval request full text (or data) including at least one payment information, and generate the payment approval. A payment terminal 145 for requesting a predetermined payment approval using a blue text (or data), an information receiving means 115 for receiving the payment approval request text (or data), and the full text of the payment approval request (or data) Information confirmation means 120 for confirming the information of the wireless terminal 1100 included in the data) and a token associated with the confirmed information of the wireless terminal 1100 in association with the storage medium (or storage medium operating means). Authentication means 125 for verifying program information and authenticating the validity of the received token code using the token generation program information, and the wireless terminal 1100 information according to the validity authentication result of the token code; A payment processing system comprising: payment processing means 130 for performing payment processing corresponding to the payment approval request with reference to the payment means information linked thereto; To be about.

Referring to FIG. 1, the payment processing system may further include a token agent providing means 100 for providing a predetermined token generation program to the payment means owning customer wireless terminal 1100.

In addition, the payment processing system transmits predetermined payment processing history (or payment approval text) data corresponding to the payment processing to the payment terminal 145 (or the payment method owned customer wireless terminal 1100 or wired terminal). It is preferable that the information transmission means further comprises.

In addition, the payment processing system information storage means for storing the predetermined payment processing history (or payment approval professional) data corresponding to the payment processing in a predetermined storage medium in association with the payment means information (and / or customer information) It is preferable to further comprise 140.

According to the embodiment of the present invention, the payment processing is preferably performed including offline payment processing and / or online payment processing, wherein the payment means includes a credit card payment means, a debit card payment means, Preferably, the card comprises at least one of a cash card payment means, a check card payment means, a prepaid card payment means, a financial account payment means, and an electronic money payment means, and the payment terminal 145 owns the payment means. It is preferable that the wireless terminal 1100 or wired terminal of the customer, a financial transaction automation processing device such as CD / ATM, a POS terminal and at least one CAT terminal are included.

In addition, the wireless terminal 1100 may be a Personal Communication System (PCS) and / or a Global System for Mobile communications (GSM) terminal and / or a Personal Digital Cellular Terminal (PDC) and / or PHS (PHS). At least one Personal Handyphone System terminal and / or Personal Digital Assistant (PDA) and / or Smart Phone and / or Telematics and / or wireless data communication terminal and / or portable Internet terminal It is preferable to include the above, and a predetermined token agent program is mounted by the token agent providing means 100.

According to an embodiment of the present invention, the information transmitting means transmits the payment processing history (or payment approval text) data to the payment terminal 145 (or the customer who owns the payment means) via a predetermined relay server such as a VAN company server. It is preferable to transmit to the terminal 1100 or a wired terminal.

According to the exemplary embodiment of the present invention, the payment terminal 145 may further transmit at least one or more authentication information (or secret code) associated with the payment means to the payment processing means 130, and the payment processing The means 130 preferably determines whether to perform the payment process based on the authentication information (or secret code).

According to the exemplary embodiment of the present invention, the payment terminal 145 outputs at least one payment means information linked to the information of the wireless terminal 1100 on the screen, and the customer owning the payment means through a predetermined input means. It is preferable to receive from the predetermined payment means selection information to be used for payment processing from.

In addition, when using the payment means online, the payment terminal 145 preferably receives predetermined payment information from a server on a communication network.

According to the embodiment of the present invention, the authentication means 125 generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the wireless terminal 1100 information, It is preferable to verify the validity of the received token code by comparing the token code and the token authentication code.

2 illustrates a configuration of a system for providing a predetermined token agent to the customer wireless terminal according to an embodiment of the present invention.

More specifically, FIG. 2 provides a predetermined token agent program and is mounted on a customer wireless terminal having at least one payment method, and stores the at least one payment method information, the customer wireless terminal information, and the token agent information. 1 is a block diagram illustrating a preferred embodiment of a token agent providing system stored in the medium 110. FIG. 1 is provided to easily explain the technical features of the present invention to those skilled in the art. The token agent providing system issues at least one or more payment means to a predetermined customer-owned card medium (eg, an MS (Magnetic Stripe) card and / or an integrated circuit (IC) card), and / or is mounted on a customer wireless terminal or A payment means issuing server 200 for issuing a predetermined payment means with a detachable IC chip, and A token agent providing server 215 for providing and mounting a predetermined token agent program to a guest wireless terminal, token agent information mounted on the customer wireless terminal, the customer wireless terminal information, and at least one payment means issued to the customer It will be described as being configured to include an information storage server 235 for storing information in a predetermined storage medium 110 in association with the information. However, technical features of the token agent providing system are not limited to those shown in FIG. 2, and a person having ordinary knowledge in the technical field to which the present invention pertains may refer to the payment means issuing server with reference to FIG. 2. It is easy to infer a method of implementing various token agent providing systems in which the 200 and the token agent providing server 215 and the information storage server 235 are constituted by one server and / or are composed of at least two or more servers. You can do it.

The payment means issuing server 200 is a credit card payment means, debit card payment means, cash card payment means, check card payment means, prepaid card payment means, financial account payment means, electronic money payment means A server provided in a card company and / or a financial company for issuing at least one payment means to the customer. Referring to FIG. 2, a payment means issuing unit 205 for issuing at least one payment method to the customer; And payment means information D / B 210 for storing the customer information in association with at least one payment means information issued to the customer.

The payment means issuing unit 205 obtains predetermined customer information about the customer through a predetermined payment method issuing interface, and / or at least one payment method to issue to the customer based on the obtained customer information. Information is generated, and the payment means information is stored and issued in predetermined card media (e.g., MS card and / or IC card) and / or wireless chip media (e.g., IC chip mounted or detached from a customer wireless terminal). Characterized in that.

According to an exemplary embodiment of the present invention, the method for obtaining payment information of the customer by the payment means issuing unit 205 may include receiving the customer information through a document including a predetermined customer information writing form, And a method of using a payment means issuing interface that is acquired in an offline manner through an information input means (eg, an information input terminal) of the user, and / or a predetermined customer terminal (eg, a customer owned wireline) used by the customer. Terminal and / or a customer-owned wireless terminal), and a method of using a payment means issuing interface for obtaining a predetermined customer information input interface and acquiring the customer information online through the customer information input interface. .

In addition, the payment means issuing unit 205 reads the obtained customer information (for example, the credit rating of the customer) to generate at least one or more payment means information to be issued to the customer, the predetermined payment means information It is preferable to store in a card medium and / or a wireless chip medium to issue to the customer.

When at least one payment means is issued to the customer as described above, the payment means issuing unit 205 associates the customer information with at least one payment means information issued to the customer to the payment means information D / B 210 ).

Referring to FIG. 2, the token agent providing server 215 may include a token agent D / B 225 for storing at least one token agent corresponding to at least one customer wireless terminal platform, and the token agent D / B. And an agent providing unit 220 for providing and mounting a predetermined token agent stored at 225 to the customer wireless terminal, and is mounted on the customer wireless terminal by the agent providing unit 220. It is preferable to further comprise a token agent diagnostic unit for diagnosing the validity of the token agent.

The token agent D / B 225 stores at least one token agent program capable of operating in correspondence with a predetermined customer wireless terminal platform, and token agent related information corresponding to the token agent program. Detailed description of the token agent D / B 225 will be described with reference to FIG.

The agent providing unit 220 extracts a predetermined token agent program corresponding to a platform provided in the customer wireless terminal from the token agent D / B 225, and / or includes at least one token generating information. Dynamically generating a predetermined token agent program executable on a platform included in the customer wireless terminal, and at least one token generating information associated with the token agent program and / or the token agent program through a predetermined token agent providing interface; It is characterized in that provided by the customer provided with the wireless terminal.

In order for the agent provider 220 to provide a predetermined token agent program to the customer wireless terminal, the customer wireless terminal information is required, and the customer wireless terminal information is requested to provide and mount the token agent to the customer wireless terminal. It is provided by the subject.

According to one embodiment of the invention, the payment method issuing server 200 issuing at least one payment method to the customer, and / or after issuing at least one payment method to the customer, token code based Requests the token agent providing server 215 to provide and mount the token agent program to the customer wireless terminal where the payment means is issued for payment processing, and the payment means issuing server 200 is included in the customer information. The customer wireless terminal information is provided to the agent providing unit 220 of the token agent providing server 215.

According to another exemplary embodiment of the present invention, the customer accesses the token agent providing server 215 through a predetermined customer terminal (eg, a customer-owned wired terminal and / or a wireless terminal), and performs token code-based payment processing. It is preferable to provide the customer wireless terminal information to the token agent providing server 215.

When the token agent program is provided and the customer wireless terminal information provided therein is provided, the agent provider 220 checks the platform of the customer wireless terminal based on the customer wireless terminal information. For example, when the customer wireless terminal is a mobile communication terminal accessing a predetermined mobile communication network, the agent provider 220 may use the subscriber D / B (eg, home) provided on the mobile communication network using the wireless terminal information. The wireless terminal platform may be identified by referring to a home location register (HLR) or a visitor location register (VLR) (not shown).

When the customer wireless terminal platform is identified as described above, the agent provider 220 extracts a predetermined token agent program corresponding to the wireless terminal platform from the token agent D / B 225, and / or at least one or more Dynamically generated with token generation information.

In addition, the agent providing unit 220 extracts at least one token generation information corresponding to the token agent program from the token agent D / B 225, and the extraction (and / or dynamically generated) token agent Program and / or the extracted at least one token generating information in association with the token wireless terminal to transmit the token to the customer wireless terminal through a predetermined token agent providing interface (eg, a wireless network to which the customer wireless terminal is connected). Mount the agent program.

According to one embodiment of the present invention, the token agent program may be both mounted on the customer wireless terminal platform and / or mounted on an IC chip mounted or detached from the wireless terminal, thereby providing the present invention. Is not limited.

The token agent program provided to and mounted on the customer wireless terminal according to the present invention includes at least one token code generation method of a time-synchronous method and a challenge-response method. The present invention is never limited by the token code generation method.

When the token agent program is mounted on the customer wireless terminal as described above, the token agent diagnosis unit diagnoses whether the token agent program mounted on the wireless terminal operates normally in conjunction with the customer wireless terminal.

According to one embodiment of the invention, the method for diagnosing the token agent program mounted on the customer wireless terminal, the token agent program mounted on the customer wireless terminal generates a predetermined token code for diagnosis of the token agent If provided, the token agent diagnostic unit generates a predetermined diagnostic token authentication code corresponding to the received token code, compares the received token code with the generated token authentication code, and mounts it on the customer wireless terminal. It is desirable to diagnose the validity of the token agent program.

According to the present invention, the token agent providing server 215 performs a function of a token generating program providing means for providing and mounting a predetermined token agent program to the customer wireless terminal.

When the predetermined token agent program is normally provided and mounted to the customer wireless terminal as described above, the information storage server 235 may include at least one payment means information issued by the payment means issuing server 200 to the customer, and Predetermined wireless terminal information on the customer wireless terminal and token agent information loaded on the customer wireless terminal are stored in the predetermined storage medium 110 in association with each other.

Referring to FIG. 1, the information storage server 235 includes at least one payment means information and / or customer information (eg, customer wireless terminal information) issued to the customer from the payment means information D / B 210. Information extraction unit 240 for extracting the provided token agent information and / or the customer wireless terminal information provided from the token agent D / B 225 to the customer wireless terminal and the extracted information; And at least one payment means information, customer wireless terminal information, and an information storage unit 245 which stores information in a predetermined storage medium 110 in association with each other and provides token agent information provided to the customer wireless terminal. It is done.

According to the present invention, the information storage server 235 connects at least one or more payment information, the payment means owning customer wireless terminal information, and predetermined token agent information for the token agent program provided in the wireless terminal. Performs a function of information storage means for storing in the storage medium 110 of the.

3 is a diagram illustrating token agent information to be provided to the wireless terminal 1100 according to an embodiment of the present invention.

In more detail, Figure 3 is a predetermined token agent for generating a time-synchoken token code, the predetermined token for each platform corresponding to the platform of the wireless terminal 1100 on which the token agent is to be mounted As an example of attribute information on an agent, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, and a token generation algorithm. And at least one token generation information, and / or a token renewal cycle, at least one information item may be further included according to the intention of the person skilled in the art, and the present invention is not limited to the information item. .

According to the present invention, the token agent program is mounted on the wireless terminal 1100 owned by the customer, and generates a predetermined token code, whereby the token agent program is the customer wireless terminal 1100 platform. It characterized in that it comprises a program code that can be driven and / or operated in. For example, if the wireless terminal 1100 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code that operates on a WIPI basis, and the other platform (eg, GVM / SK-VM). / BREW, etc.) is included, the program code running on the platform is included.

In FIG. 3, the token agent program is provided in the token agent D / B 225 in the form of a precompiled program, and / or the token agent D / B 225 in the form of source code to be compiled. It is characterized in that stored in.

When the token agent program is provided in the token agent D / B 225 in the form of a pre-compiled program according to an embodiment of the present invention, the token agent providing server 215 may transmit the wireless data through a predetermined wireless network. At the time of providing and mounting the token agent program to the terminal 1100, at least one token generation information corresponding to the token agent program (eg, corresponding to a number randomly generated by the token agent providing server 215). Secret key value) is provided together with the wireless terminal 1100 and stored in a predetermined storage device, and at the time when the token agent program mounted in the wireless terminal 1100 generates a predetermined token code, The token agent program may include the token agent external storage device (eg, the wireless terminal 1100). Memory, and / or a memory provided in an IC chip mounted or detached from the wireless terminal 1100) to extract at least one token generation information, and generate a predetermined token code based on the token generation information. desirable.

According to another embodiment of the present invention, when the token agent program is stored in the token agent D / B 225 in the form of source code to be compiled, the token agent providing server 215 at the wireless terminal 1100. At the time of providing the token agent program, at least one token generation information corresponding to the token agent program (eg, a secret key value corresponding to a randomly generated number by the token agent providing server 215) may be stored. Assign the token generation information variable included in the token agent source code, and generate the predetermined token agent program by compiling the token agent source code in which at least one token generation information is assigned to the predetermined token generation information variable as described above. In this example, the token agent program generated dynamically is Preferably, the token agent program is provided to the wireless terminal 1100 via the wireless network, and the token agent program is generated when the token agent program mounted on the wireless terminal 1100 generates a predetermined token code. It is preferable to generate a predetermined token code based on the token generation information substituted in the token agent program internal variable.

According to another exemplary embodiment of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the wireless terminal 1100 according to the intention of a person skilled in the art. At the time of mounting, at least one other token generation information is provided together with the wireless terminal 1100 and stored in a predetermined storage device, and the token agent program mounted on the wireless terminal 1100 is assigned a predetermined token code. At the time of generating the token, it is possible to generate a predetermined token code using both the token generation information provided in the token agent program and the token generation information provided in the external storage device, thereby limiting the present invention. It doesn't work.

The version of the token agent information includes version information of the token agent program for each platform to be provided to the wireless terminal 1100.

According to the embodiment of the present invention, even if the same kind of token agent program (for example, a token agent program operating on the same platform), the type and / or version of the token generation algorithm applied according to the version of the token agent program may be different. And, as a result, the token code generated by the token agent program will also vary, so that the version information provides information for accurately determining the token agent mounted on the wireless terminal 1100. It is possible to minimize the token code authentication error that may occur in the process of authenticating the predetermined token code generated in the wireless terminal 1100 by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and hashing algorithms (eg, SHA1 hashing algorithms modified from SHAs), which are modified from the hashing algorithm, are used according to application fields. .

The token generation information of the token agent information is information for generating a token code of a time synchronous method. Referring to FIG. 3, the token code generation information indicates a time (or time) at which the token code is generated. According to the implementation method, a secret key value corresponding to a value randomly generated by the token agent providing server 215 and / or a MIN / ESN uniquely assigned to the wireless terminal 1100 on which the token agent is mounted. Is preferably used as the second generation information and / or the third generation information.

Referring to one embodiment of the present invention, when the token agent uses MIN / ESN of the wireless terminal 1100 as token generation information for generating a predetermined token code, the MIN / ESN is used as token generation information as it is. It is possible to use a predetermined hash function in the MIN / ESN in order to prevent the token agent from overflowing in the process of generating the token code by having the MIN / ESN value too large. It is possible to apply and convert to a value within a certain size, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

The token update period of the token agent information is a time interval in which a predetermined token code generated by the token agent is volatilized and invalidated in time when the token generation algorithm follows a time synchronization scheme. If it is difficult to transmit the time (or time) information of the token code generated with the token code in the process of transmitting to the financial transaction server, the token generation time between the wireless terminal 1100 and the financial transaction server ( Or time) is used to synchronize information for a period of time. That is, the token code generated by the token agent is transmitted to the predetermined financial transaction server within the token update period, and the predetermined token authentication code corresponding to the token code should be generated by the financial transaction server. That is, after a predetermined token code is generated in the token agent provided in the wireless terminal 1100 and the predetermined token authentication code is generated within the talk update period in the financial transaction server, the validity of the token code is invalid. It is certified. Therefore, the token update period is a time required to provide the token code generated in the wireless terminal 1100 to a predetermined payment terminal, a time required to transmit the token code to the financial transaction server, and the financial transaction. It is preferable to consider the time required for generating a predetermined token authentication code in the server.

According to another exemplary embodiment of the present invention, when the token generation algorithm follows a time synchronization scheme and it is easy to transmit the time (or time) information at which the token code is generated by the token agent to the financial transaction server, The token update period may be omitted or may be set at very short time intervals.

4 illustrates token agent information to be provided to the wireless terminal 1100 according to an exemplary embodiment of the present invention.

In more detail, Figure 4 is a predetermined token agent for generating a challenge-response token code, and each platform corresponding to the platform of the wireless terminal 1100 on which the token agent is to be mounted is predetermined. As an example of attribute information on a token agent, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, and a token generation. It comprises an algorithm and at least one token generation information, at least one or more information items may be further included according to the intention of those skilled in the art, the invention is not limited by the information items.

According to the present invention, the token agent program is mounted on the wireless terminal 1100 owned by the customer, and generates a predetermined token code, whereby the token agent program is the customer wireless terminal 1100 platform. It characterized in that it comprises a program code that can be driven and / or operated in. For example, if the wireless terminal 1100 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code that operates on a WIPI basis, and the other platform (eg, GVM / SK- If VM / BREW is installed), it includes program code that runs on the platform.

4, the token agent program D / B 225 is provided in the token agent D / B 225 in the form of a precompiled program, and / or in the form of source code to be compiled. It is characterized in that stored in.

According to an embodiment of the present invention, the token agent program is provided in the token agent D / B 225 in the form of a precompiled program, and the token agent program receives the token code from a predetermined payment processing server 1000. And a predetermined challenge value as token generation information for generation, wherein the token agent providing server 215 provides the token agent program to the customer wireless terminal 1100 via a predetermined wireless network and is mounted thereon. Preferably, when the token agent program installed in the wireless terminal 1100 generates a predetermined token code, the token agent program is based on a predetermined challenge value received from the payment processing server 1000. It is desirable to generate a predetermined token code.

According to another exemplary embodiment of the present invention, when the token agent program is provided in the token agent D / B 225 in the form of a pre-compiled program, the token agent providing server 215 may perform the above-described wireless network. At the time of providing and mounting the token agent program to the wireless terminal 1100, at least one token generation information corresponding to the token agent program (for example, corresponds to a number randomly generated by the token agent providing server 215). Secret key value) to the wireless terminal 1100 and stored in a predetermined storage device, and the token agent program mounted on the wireless terminal 1100 generates a predetermined token code. , The token agent program is a predetermined challenge received from the payment processing server 1000 Extracts at least one token generation information from a value and the token agent external storage device (eg, a memory of the wireless terminal 1100 and / or a memory provided in an IC chip mounted or detached from the wireless terminal 1100); Preferably, a predetermined token code is generated based on the token generation information.

According to another exemplary embodiment of the present invention, when the token agent program is stored in the token agent D / B 225 in the form of source code to be compiled, the token agent providing server 215 at the wireless terminal 1100. At the time of providing the token agent program, at least one token generation information corresponding to the token agent program (for example, a secret key value corresponding to a randomly generated number by the token agent providing server 215) is obtained. Substituting the token generation information variable contained in the token agent source code, and compiling the token agent source code in which at least one token generation information is assigned to a predetermined token generation information variable as described above to generate a predetermined token agent program Create a token agent program Preferably, the token agent program is provided to the wireless terminal 1100 through a predetermined wireless network and mounted thereon. At the time when the token agent program mounted on the wireless terminal 1100 generates a predetermined token code, the token agent program It is preferable to generate a predetermined token code based on a predetermined challenge value received from the payment processing server 1000 and token generation information substituted into the token agent program internal variable.

According to another exemplary embodiment of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the wireless terminal 1100 according to the intention of a person skilled in the art. At the time of mounting, at least one other token generation information is provided together with the wireless terminal 1100 and stored in a predetermined storage device, and the token agent program mounted on the wireless terminal 1100 is assigned a predetermined token code. At the time of generating the token agent, the token agent program includes a predetermined challenge value received from the payment processing server 1000, the token generation information provided in the corresponding token agent program, the token generation information provided in the external storage device, and the like. It is possible to generate a predetermined token code using, To the present invention it is not limited.

The version of the token agent information includes version information of the token agent program for each platform to be provided to the wireless terminal 1100.

According to the embodiment of the present invention, even if the same kind of token agent program (for example, a token agent program operating on the same platform), the type and / or version of the token generation algorithm applied according to the version of the token agent program may be different. And, as a result, the token code generated by the token agent program will also vary, so that the version information provides information for accurately determining the token agent mounted on the wireless terminal 1100. It is possible to minimize the token code authentication error that may occur in the process of authenticating the predetermined token code generated in the wireless terminal 1100 by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and a hashing algorithm (for example, SHA-1 hashing algorithm with SHA) is further modified according to an application. It is used.

The token generation information of the token agent information is information for generating a token code of a time synchronous method. Referring to FIG. 4, the token code generation information is determined by the token agent program provided in the wireless terminal 1100. At the time of generating the token code, a predetermined challenge value provided to the wireless terminal 1100 through the payment processing server 1000 is used as first generation information, and in the token agent providing server 215 according to an implementation method. Using a secret key value corresponding to a randomly generated value and / or a MIN / ESN uniquely assigned to the wireless terminal 1100 on which the token agent is mounted as the second generation information and / or the third generation information. desirable.

According to an exemplary embodiment of the present invention, the challenge value is randomly generated by the payment processing server 1000 at the time when the token agent program included in the wireless terminal 1100 generates a predetermined token code. As a value, the payment processing server 1000 transmits from the wireless terminal 1100 to the wireless terminal 1100 until a token code (for example, a response corresponding to the challenge) generated based on the challenge value is received. It is preferable to maintain one challenge value, and when the token code is received, it is preferable to generate a predetermined token authentication code based on the challenge value to authenticate the received token code.

Referring to one embodiment of the present invention, when the token agent uses MIN / ESN of the wireless terminal 1100 as token generation information for generating a predetermined token code, the MIN / ESN is used as token generation information as it is. It is possible to use a predetermined hash function in the MIN / ESN in order to prevent the token agent from overflowing in the process of generating the token code by having the MIN / ESN value too large. It is possible to apply and convert the value to a value within a certain size, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

5 is a diagram illustrating an implementation process of providing and mounting a token agent program to a customer wireless terminal according to one embodiment of the present invention.

In more detail, Figure 5 relates to a process of mounting a token agent program for token code-based payment processing to a predetermined customer wireless terminal, if those of ordinary skill in the art to which the present invention belongs, With reference to the implementation method shown below, various implementation methods for mounting a predetermined token agent to the customer wireless terminal may be easily inferred, and the present invention is not limited by the implementation method. .

Referring to FIG. 5, predetermined token information (and / or customer information) on which the token agent program for token code based payment processing is mounted is provided to the token agent providing server 215 (500).

According to an embodiment of the present invention, the process 500 may include predetermined wireless terminal information (and / or information) to be loaded with a predetermined token agent program from a predetermined payment means issuing server 200 to the token agent providing server 215. Customer information), and / or the customer accesses the token agent providing server 215 to provide wireless terminal information (and / or customer information) for the customer-owned wireless terminal. It is preferable to include the process.

When the customer wireless terminal information is provided as described above, the token agent providing server 215 reads the wireless terminal information (and / or customer information) to provide and mount a predetermined token agent program to the customer wireless terminal. Check (505).

According to an exemplary embodiment of the present invention, when a valid token agent program is preloaded in the customer wireless terminal, the token agent providing server 215 does not need to mount a token agent on the wireless terminal. If a valid token agent program is not mounted, it is preferable to provide and mount the token agent.

If it is necessary to provide and mount a predetermined token agent program to the customer wireless terminal (510), the token agent providing server 215 reads the wireless terminal information of the customer and provides a token agent program to be provided to the customer wireless terminal. Check (515).

According to an embodiment of the present invention, the token agent providing server 215 is a subscriber D / B (eg, home location register or visited location register) provided in the mobile communication network when the wireless terminal information is connected to the mobile communication network; It is preferable to identify the token agent program to be provided to the customer wireless terminal by checking the wireless terminal device platform with reference to the reference). Alternatively, the mobile terminal further includes platform information (or model information of the wireless terminal) in the process of receiving the wireless terminal information in order to process the token agent providing process irrespective of the mobile communication company according to an embodiment. It is also possible to receive.

When the token agent to be provided to the customer wireless terminal is identified as described above, the token agent providing server 215 extracts or compiles the identified token agent program from the token agent D / B 225 and dynamically generates it. And / or extract from the token agent D / B 225 predetermined token generation information required for the token agent program to generate a predetermined token code, or dynamically generate (eg, generate a random value). (520).

When the predetermined token agent program to be provided and mounted to the customer wireless terminal and at least one token generation information corresponding to the token agent program are prepared as described above, the token agent providing server 215 sends the token to the customer wireless terminal. Provide and mount an agent (525).

According to an embodiment of the present invention, the token agent providing server 215 may include a predetermined wireless message (eg, SMS (Short) including a predetermined callback URL for providing the token agent to the customer wireless terminal. Message Service (EMS), Enhanced Message Service (EMS), Multimedia Messaging Service (MMS), etc.), and when the wireless terminal accesses the token agent providing server 215 through the callback UE, the wireless terminal transmits the It is desirable to provide and mount a token agent.

According to another exemplary embodiment of the present invention, the token agent providing server 215 may be configured by the customer through another type of wireless software loading method that does not use the callback UE due to the intention of the person skilled in the art and / or the policy of the wireless network operator. It is possible to provide and mount the token agent to a wireless terminal, whereby the present invention is not limited.

After the predetermined token agent program is loaded into the customer wireless terminal as described above, the customer wireless terminal determines to execute the diagnostic mode for the mounted token agent program, if the diagnostic mode for the token agent is executed (530). ), The wireless terminal executes the mounted token agent program to generate a predetermined diagnostic token code and transmits it to the token agent providing server 215 (535), and the token agent providing server 215 performs the diagnostic token. A predetermined diagnostic token authentication code corresponding to the code is generated (540), and the validity of the token agent program installed in the customer wireless terminal is checked (545) by comparing the diagnostic token code with the diagnostic token authentication code.

According to an embodiment of the present invention, the token agent program mounted on the customer wireless terminal generates a predetermined token code in a time synchronous manner, and for this purpose, the token agent program is currently present from an internal timer provided in the wireless terminal. It is preferable to generate the diagnostic token code by extracting the (or time) information and using the extracted time (or time) information as predetermined token generation information for generating the diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program is in the process of providing the token agent program at least one or more token generation information (for example, the token agent providing server 215 from the storage device provided in the wireless terminal). It is possible to generate the diagnostic token code further comprises a secret key including a random value transmitted together, and / or MIN / ESN information of the wireless terminal stored in the number assignment module (NAM) of the wireless terminal. .

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wireless network, and the token agent providing server 215 generates the time of generating the diagnostic token code in the wireless terminal (or Time) to generate a predetermined diagnostic token authentication code, and compares the received diagnostic token code with the generated diagnostic token authentication code, thereby confirming the validity of the token agent program mounted on the wireless terminal.

According to another exemplary embodiment of the present invention, the token agent program installed in the customer wireless terminal generates a predetermined token code in a challenge-response manner, and the token agent providing server 215 may set a predetermined challenge value. It is preferable to generate and provide to the wireless terminal, the token agent program to generate a diagnostic token code using the provided challenge value as the predetermined token generation information for generating a diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program is in the process of providing the token agent program at least one or more token generation information (for example, the token agent providing server 215 from the storage device provided in the wireless terminal). It is possible to generate the diagnostic token code further comprising a secret key including a random value transmitted together with, and / or MIN / ESN information of the wireless terminal stored in the NAM of the wireless terminal.

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wireless network, and the token agent providing server 215 is used for generating the diagnostic token code in the wireless terminal. A predetermined diagnostic token authentication code is generated including a value, and the validity of the token agent program mounted in the wireless terminal is checked by comparing the received diagnostic token code with the generated diagnostic token authentication code.

If the token diagnostic token code and the diagnostic token authentication code do not match (550), the token agent providing server 215 requests retransmission of the token diagnostic token code to the wireless terminal (555), and the process (535 ~). Repeat 545 to verify the validity of the token agent.

On the other hand, if the token diagnostic token code and the diagnostic token authentication code match the validity of the token agent (550), the information storage server 235 is the token agent mounted on the customer wireless terminal information and the customer wireless terminal. The information and the payment means information issued to the customer in the payment means issuing server 200 is stored in a predetermined storage medium by linking processing (560).

6 is a diagram illustrating an information configuration of wireless terminal information stored in the storage medium according to an embodiment of the present invention.

In more detail, Figure 6 illustrates a preferred information configuration of the customer wireless terminal information associated with the payment means information and / or token agent information for the token code-based payment, each stored in the storage medium The information may be added to at least one or more information items according to the intention of the person skilled in the art for carrying out the present invention, and the present invention is not limited thereto.

Referring to FIG. 6, the wireless terminal information includes at least one wireless terminal number information of a telephone number (MIN) and a serial number (ESN) of the financial transaction customer-owned wireless terminal equipped with the token agent. The mobile terminal may further include platform information about the wireless terminal, carrier information, and terminal model information.

According to the exemplary embodiment of the present invention, the wireless terminal information may be further added with at least one information item according to the intention of the person skilled in the art. For example, the wireless terminal information may further include IC chip unique information (ICCHIP) (not shown) in an IC chip mounted or detached from the wireless terminal, and / or a subscriber identity module (SIM) in the wireless terminal. ) Or when a Universal Identification Module (UIM) or Universal Subscriber Identity Module (USIM) is provided, the SIM information, UIM information, or USIM information may be further included.

7A and 7B illustrate an information configuration of token agent information stored in the storage medium according to an embodiment of the present invention.

In more detail, Figs. 7a and 7b illustrate preferred configuration of token agent information corresponding to the token agent program loaded on the customer wireless terminal for token code-based payment. Specifically, Fig. 7a is a time-synchronous token. FIG. 7B illustrates preferred information configuration of token agent information corresponding to the agent program, and FIG. 7B illustrates preferred information configuration of token agent information corresponding to the token agent program of the challenge-response method.

According to the method of the present invention, the token agent information is preferably associated with the customer wireless terminal information and / or the payment means information on which the token agent program is mounted, each information stored in the storage medium is It is possible to add at least one or more information items according to the intention of the person skilled in the art to carry out the invention, whereby the present invention is not limited.

Referring to FIGS. 7A and 7B, the token agent information is information for identifying what kind of token agent is mounted in the customer wireless terminal and generating a token authentication code for authenticating the token code generated by the token agent. To this end, the token agent information includes the platform information of the wireless terminal equipped with the token agent program, the version of the token agent and the token generation algorithm and at least one token generation information mounted on the platform; Is done.

Referring to FIG. 7A according to an embodiment of the present invention, the token agent information of the time synchronization method may further include a predetermined token update period in which time synchronization is maintained.

Referring to FIG. 7B according to another embodiment of the present invention, a challenge value (eg, first generation information of FIG. 7B) of token generation information included in the challenge-response token agent information may be transmitted to the customer wireless terminal. Before the challenge value is generated, a null value is included, and when a challenge value to be transmitted to the customer wireless terminal is generated, the generated challenge value is substituted and the challenge is generated from the token agent program loaded in the wireless terminal. It is preferable to maintain the substituted challenge value until a predetermined token code (response) corresponding to the value is received, and after an authentication procedure for the received token code is performed through the challenge value (e.g., the After the token authentication code corresponding to the received token code is generated through the maintained challenge value), generating the token The challenge value of the information (for example, the first generation information in FIG. 7B) preferably includes a null value again.

The wireless terminal information comprises at least one wireless terminal number information of the telephone number (MIN) and serial number (ESN) of the financial transaction customer owned wireless terminal equipped with the token agent, It may further include the platform information and carrier information and terminal model information.

According to the exemplary embodiment of the present invention, the wireless terminal information may be further added with at least one information item according to the intention of the person skilled in the art. For example, the wireless terminal information may further include IC chip unique information (ICCHIP) (not shown) in an IC chip mounted or detached from the wireless terminal, and / or a subscriber identity module (SIM) in the wireless terminal. ) Or when a Universal Identification Module (UIM) or Universal Subscriber Identity Module (USIM) is provided, the SIM information, UIM information, or USIM information may be further included.

8 is a diagram illustrating an information configuration of customer information stored in the storage medium according to an embodiment of the present invention.

In more detail, FIG. 8 illustrates a preferred information configuration of predetermined customer information for a customer linked to the payment means information and / or associated with token agent information for token code based payment. Each information to be stored may be further added to at least one item of information according to the intention of those skilled in the art of practicing the present invention, whereby the present invention is not limited.

Referring to FIG. 8, the customer information includes customer personal information including at least one of a name, a social security number, an address, and the like for the customer, and token agent relationship information for establishing a relationship between the customer and the token agent. Characterized in that made.

Referring to FIG. 8 according to a preferred embodiment of the present invention, the token agent relationship information preferably includes the financial transaction customer-owned wireless terminal information, thereby utilizing the token agent program mounted on the customer wireless terminal. Token code based payment is performed.

9 is a diagram illustrating an information configuration of payment means information stored in the storage medium according to an embodiment of the present invention.

In more detail, FIG. 9 illustrates a preferred configuration of payment means information associated with the customer wireless terminal information and / or associated with the token agent information mounted on the customer wireless terminal for token code based payment processing. More specifically, when the payment means issued to the customer by a predetermined payment means issuer is an MS (Magnetic Stripe) card including at least one track-II and / or track-III data, It is an example of payment information included.

Those skilled in the art to which the present invention pertains, with reference to this figure 9 is mounted on or detached from the IC (Integrated Circuit) card and / or the customer wireless terminal in addition to the payment means information included in the MS card It is possible to easily infer the desired information configuration of the payment means information provided on the IC chip (for example, the payment means provided on the IC card and / or IC chip also includes the information contained in the track-II of the MS card) The present invention is not limited by the payment means information configuration item. For example, if the storage medium stores IC card with a predetermined official certificate and / or payment means information provided with the IC chip, the information item includes information corresponding to the public certificate (e.g., public certificate issuer, public certificate). A copy of the certificate, etc.).

Referring to FIG. 9, the payment means information stored in the storage medium includes credit card payment means, debit card payment means, cash card payment means, check card payment means, prepaid card payment means, and financial account payment means. And payment means information including at least one electronic money payment means, a payment means issuing agency that issued the payment means, and a payment means owning the payment means (for example, issuing a predetermined payment means from the payment means issuer). And a customer name (for example, an English customer name), and the information stored in Track-II and / or the track-III of the payment means.

According to the method of the present invention, the information stored in the track-II of the payment means comprises a 16-digit card number, the date of issuing the payment means, the expiration date of the payment means, and at least one CVC number. Preferably, the information stored in Track-III of the payment means further includes at least one affiliate information and / or additional service information associated with the payment means.

According to an exemplary embodiment of the present invention, the payment means information, the customer wireless terminal information (and / or customer information), and the token agent information as shown in FIG. 9 are stored in the storage medium in association with each other. In the provided payment terminal (or the customer wireless terminal), it becomes possible to process the payment through the predetermined token code generated by the wireless terminal information and / or the token agent program provided in the wireless terminal without the payment means.

Referring to FIG. 10A, the payment processing server 1000 may include an interface unit 1005 connecting at least one payment terminal 145 and a communication channel for payment processing for payment processing based on a token code, and the interface. Receiving payment processing information (or data) including at least one or more payment processing information for payment processing based on the token code, wireless terminal information and token code from the payment terminal 145 through the unit (1005) An information receiving unit 1010, an information confirming unit 1015 for reading the received payment processing data (or data) to confirm the wireless terminal information, and the wireless unit from the storage medium based on the confirmed wireless terminal information. An extraction unit 1020 for extracting token agent information associated with the terminal information, and provided to the wireless terminal based on the extracted token agent information Generate a predetermined token authentication code under the same conditions (eg, the same token generation information and token generation algorithm) that generated the token code in a large agent program, the token code received from the payment terminal 145 and the generated token Comparing the authentication code, characterized in that it comprises an authentication unit 1025 for authenticating the validity of the received token code.

In addition, when the validity of the received token code is authenticated by the authentication unit 1025, the payment processing server 1000 corresponds to the payment processing information received by being included in the payment processing message (or data). Characterized in that it further comprises a payment processing unit 1030 to perform the payment processing.

In addition, when the payment processing is normally performed by the payment processing unit 1030, the payment processing server 1000 associates at least one or more payment processing details with the payment means information and / or customer information in a predetermined storage medium. It characterized in that it further comprises a storage unit 1035 to store in ().

In addition, the payment processing server 1000 transmits the payment processing details to the payment terminal 145 through the interface unit 1005 when the payment processing is normally performed by the payment processing unit 1030. Characterized in that it further comprises a transmitter 1040.

The interface unit 1005 connects at least one payment terminal 145 and a payment processing communication channel for payment processing based on the token code through a predetermined payment processing network. The processing network includes at least one wired network (e.g., TCP / IP based Internet) and / or wireless network (e.g., CDMA based mobile communication network) and / or value added communication network () depending on the type of payment terminal 145. And / or at least one financial common network.

The information receiving unit 1010 receives a payment processing message (or data) including at least one or more payment processing information, wireless terminal information, and a token code transmitted from the payment terminal 145 through the interface unit 1005. It is characterized by.

According to an exemplary embodiment of the present invention, the wireless terminal information and the token code are preferably included in the payment processing message (or data) including the payment processing information and received by the information receiving unit 1010.

According to another exemplary embodiment of the present invention, the wireless terminal information and token code may be received from the payment terminal 145 by the information receiving unit 1010 including the payment processing message (or data) including the payment processing information. It is preferably received via a telegram (or data) for the transfer of a separate token code.

According to another exemplary embodiment of the present invention, the wireless terminal information and token code are received from the payment terminal 145 by the payment processing message (or data) including the payment processing information to the information receiving unit 1010. And then received via a separate token code transfer (or data).

The information checking unit 1015 reads the payment processing message (or data) received by the information receiving unit 1010, thereby checking and extracting the wireless terminal information included in the payment processing message (or data). When the wireless terminal information is received through a separate token code transmission message (or data), it is preferable to check and extract the wireless terminal information by reading the token code transmission message (or data). Do.

The extractor 1020 extracts token agent information associated with the wireless terminal information from the storage medium using the extracted wireless terminal information and provides the extracted authentication information to the authentication unit 1025.

The authentication unit 1025 generates a predetermined token authentication code through the same token generation information and token generation algorithm used to generate the token code in the token agent program provided in the wireless terminal based on the extracted token agent information. And, by comparing the token code received from the payment terminal 145 and the generated token authentication code, it characterized in that the validity of the received token code is authenticated, by the authentication unit 1025 Validation of the valid token code includes securing confidentiality, authentication, integrity, and nonrepudiation of payment processing based on the token code.

When the validity of the token code is authenticated by the authentication unit 1025, the payment processing unit 1030 performs payment processing corresponding to payment processing information included in the payment processing text (or data). It is done.

According to one embodiment of the present invention, the payment processing unit 1030 preferably performs payment processing corresponding to the payment processing information, and generates a predetermined payment processing history corresponding to the payment processing / financial transaction]. The storage unit 1035 stores the generated one or more payment processing details in a predetermined storage medium in association with the payment means information and / or customer information, and the information transmission unit 1040. Transmits the generated payment processing history to the payment terminal 145 through the interface unit 1005.

According to another exemplary embodiment of the present invention, when the token code received from the payment terminal 145 is generated in a challenge-response manner, the authenticator 1025 further has a function of dynamically generating a random challenge value. Preferably, the information transmission unit 1040 includes a function for transmitting the generated challenge value to the customer wireless terminal.

Referring to FIG. 10B, the payment processing server 1000 may include an interface unit 1005 for connecting a communication channel for payment processing with at least one customer wireless terminal for payment processing based on a token code, and the interface unit ( An information receiving unit 1010 that receives payment processing information for payment processing based on the token code, payment processing data including at least one wireless terminal information, and a token code from the wireless terminal 1100 through 1005; An extractor 1020 for extracting token agent information associated with the wireless terminal information from the storage medium based on the wireless terminal information transmitting the payment processing data; and the wireless terminal based on the extracted token agent information. The same condition that generated the token code in the token agent program provided in the Information and token generation algorithm) to generate a predetermined token authentication code, and compares the token code received from the customer wireless terminal with the generated token authentication code to authenticate the validity of the received token code (1025) It is characterized by comprising a).

In addition, when the validity of the received token code is authenticated by the authentication unit 1025, the payment processing server 1000 includes payment processing corresponding to the received payment processing information included in the payment processing data. Characterized in that it further comprises a payment processing unit 1030 to perform.

In addition, when the payment processing is normally performed by the payment processing unit 1030, the payment processing server 1000 associates at least one or more payment processing details with the payment means information and / or customer information in a predetermined storage medium. It characterized in that it further comprises a storage unit 1035 to store in ().

Also, the payment processing server 1000 transmits the payment processing details to the customer wireless terminal through the interface unit 1005 when the payment processing is normally performed by the payment processing unit 1030. It characterized in that it further comprises (1040).

The interface unit 1005 connects at least one or more customer wireless terminals and a payment processing communication channel for payment processing based on the token code through a predetermined payment processing network. The network for use preferably comprises a predetermined wireless network (eg, a CDMA based mobile communication network).

The information receiving unit 1010 receives payment processing data including payment processing information, wireless terminal information, and at least one token code transmitted from the customer wireless terminal through the interface unit 1005. In the process of receiving payment processing data, the wireless terminal information is extracted as caller information.

According to an exemplary embodiment of the present invention, the wireless terminal information and the token code are preferably included in the payment processing data including the payment processing information and received by the information receiving unit 1010.

According to another exemplary embodiment of the present invention, the wireless terminal information and the token code are separately transmitted from the customer wireless terminal before the payment processing data including the payment processing information is received by the information receiving unit 1010. It is preferably received via data.

According to another exemplary embodiment of the present invention, the wireless terminal information and the token code are separate token codes after the payment processing data including the payment processing information is received from the customer wireless terminal to the information receiving unit 1010. It is preferably received via transmission data.

According to another exemplary embodiment of the present invention, when the token code received from the customer wireless terminal is generated in a challenge-response manner, the authentication unit 1025 further includes a function of dynamically generating a random challenge value. The information transmitter 1040 preferably includes a function of transmitting the generated challenge value to the customer wireless terminal.

11 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

In more detail, FIG. 11 illustrates a case in which a mobile communication terminal accessing a mobile communication network based on code division multiple access (CDMA) performs a function of a wireless terminal for generating a token code for the token code based payment processing. The preferred functional configuration of the mobile communication terminal for generating the token code. Those skilled in the art to which the present invention pertains, with reference to this figure 11 other wireless terminal for generating token code for the token code based payment processing in addition to the mobile communication terminal (for example, wireless data communication terminal, or It is possible to easily infer the functional configuration of the portable Internet terminal). As a result, the functional configuration of the wireless terminal equipped with the token agent program is not limited to that shown in FIG. It can be modified and implemented.

In terms of hardware, a wireless terminal providing a mobile communication service includes an external body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery 1125, and internally, CDMA. (Code Division Multiple Access) A predetermined modem chip (e.g., MSM series modem chip of Qualcomm, Inc.) and various memories incorporating functions such as a modem, CPU / MPU (Central Processing Unit / Micro Processing Unit), vocoder, etc. Device, a duplexer filter that separates the transmission and reception signals from one antenna, a power amplifier that amplifies the transmission signal, a high power amplifier (HPA), an isolator that prevents the high power transmission signal from returning in reverse RF / IF SAW filter for eliminating out-of-band unwanted signals, frequency up-circuit in transmission path, frequency down-conversion circuit in receive path, and reference clock source VCTCXO (Voltage Controlled Temperature Compensated X-tal Oscillator), UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal. Is gradually integrated in the modem chip, and in addition to the core components for the mobile communication service, various functions for various multimedia services and / or additional services are integrated together.

Referring to FIG. 11, a wireless terminal for generating a predetermined token code for the token code-based payment processing basically includes a controller 1105, a screen output unit 1110, a sound processor 1115, a key input unit 1120, and the like. An IC chip 1150 having a wireless processing unit 1130, a short-range communication unit 1135, a memory unit 1155, and a battery 1125 for supplying power, and mounted or detached from the wireless terminal according to an embodiment of the present invention. The IC chip 1150 further includes a functional configuration including an IC chip reader 1145 for reading / writing predetermined information or data.

The control unit 1105 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, and includes a predetermined program routine for providing a function specific to a wireless terminal from a predetermined memory device. And / or a bus for inputting and outputting program data and a predetermined electronic circuit (or integrated circuit) provided therefor, wherein the execution memory is selected from a predetermined memory device and / or a chipset in software. A generic term for program routines and / or program data which is loaded into and computed by the processor to perform a specific function (hence, in the present invention, a recording medium of a wireless terminal for generating a token code for token code based payment processing). This control unit 1105 for convenience of viewing a predetermined token agent program routine to be recorded. And various functions intended to be implemented in the wireless terminal by the control unit 1105, and control the overall operation of the wireless terminal to realize the above functions. Characterized in that the management. In particular, when power is input to the wireless terminal to perform a function of the controller 1105 for controlling and managing overall operations of the wireless terminal, an operating system routine, a system management routine, and / or stored in a predetermined memory element System variables are loaded into the execution memory and computed by the processor to serve as variables for providing an operating system, system management program, and / or mobile communication service.

The screen output unit 1110 is a liquid crystal display (LCD) driver for outputting a screen and is a key input unit 1120 by the controller 1105 (eg, a program routine for outputting predetermined information or data to the LCD). Key data generated through the &lt; RTI ID = 0.0 &gt; ) Is output to a predetermined screen output device (for example, LCD panel), the screen output unit 1110 is connected to the screen output device (LCD) for the token code-based payment processing It is preferable to perform a function of outputting predetermined information required in the token code generation process.

The sound processor 1115 encodes a predetermined sound signal input from a microphone included in the wireless terminal and provides the sound to the controller 1105 or a predetermined sound extracted and / or generated by the controller 1105. A signal is decoded and output through a speaker. To this end, the sound processor 1115 includes a predetermined vocoder and a codec. The sound processing unit 1115 performs a function of a sound input unit provided in the wireless terminal through a microphone, or performs a function of a sound output unit provided in the wireless terminal through the sound processing unit 1115 and a speaker. do.

The key input unit 1120 includes a predetermined key having at least one or more key buttons including a predetermined number key and / or a character key and / or a function key. Detects information (or signal) input from the keypad, and selects a predetermined key button provided on the keypad in a specific input mode and / or operation mode of the wireless terminal controlled by the controller 1105. When information (or a signal) is input, generating a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the input information (or signal), and providing the generated key event to the controller 1105. The control unit 1105 reads predetermined key data corresponding to the key event in the current input mode and / or operation mode of the wireless terminal (eg, each wireless unit). Read key data from the key table storing (managing) at least one key data corresponding to a specific key event in a terminal input mode and / or an operation mode), and / or defined to match the key event. A command for executing a predetermined function is read. The keypad including the key input unit 1120 and at least one key button interlocks with each other to perform a function of key input means provided in the wireless terminal.

The wireless processor 1130 may register a location and / or a slot mode and / or a power control in conjunction with the controller 1105 (eg, a program routine for providing a mobile communication service). Or providing a mobile communication service including a hand-off and / or call processing procedure, the base station corresponding to an end of the mobile communication network in the process of providing the mobile communication service. And an RF processing function (eg, performing antenna control, modulating, synthesizing, amplifying and / or filtering the radio frequency signal) for performing transmission and reception of the radio frequency signal. In particular, the wireless processing unit 1130 processes the information or signal transmitted from the wireless terminal to the base station into a CDMA stack to provide the mobile communication service, or receives predetermined information or signals from the CDMA stack received from the base station. It is characterized by providing a function for reading.

According to an embodiment of the present invention, the wireless terminal connects a predetermined wireless section with a base station on a predetermined mobile communication network through the wireless processing unit 1130, and the mobile communication network and a predetermined wired section including the base station. It is preferable to connect a predetermined communication channel with a predetermined server (or device) provided on a predetermined communication network that interworks with the mobile communication network.

According to an embodiment of the present invention, the wireless processor 1130 connects a predetermined communication channel with the token agent providing server 215 to mount a predetermined token agent program on the wireless terminal, and the controller 1105. ), A token agent program may be received from the token agent providing server 215.

According to another exemplary embodiment of the present invention, when the token agent program generates a predetermined token code for the predetermined token code-based payment processing in a challenge-response manner, the wireless processor 1130 may control the controller 1105. ) May be connected to the payment processing server 1000 and a predetermined communication channel, and receive a predetermined challenge value for generating the token code from the payment processing server 1000.

According to another embodiment of the present invention, in the process of providing a predetermined token code generated by the token agent program to the payment processing server 1000 through the predetermined wireless network in the wireless terminal. When providing to the payment processing server 1000 (for example, transmitting a portion of the generated token code to the payment processing server 1000, or transmits the generated token code to the payment processing server 1000) The wireless processor 1130 connects a predetermined communication channel with the payment processing server 1000 in association with the control unit 1105 and transmits the generated token code to the payment processing server 1000. It is preferable.

The near field communication unit 1135 may be configured to perform infrared ray communication and / or radio frequency (RF) communication and / or Bluetooth and / or wireless LAN and / or Wi-Fi and ultra-wideband. A short-range wireless communication session is connected to a predetermined terminal (or device) through at least one short-range wireless communication means including an ultra wide band (UWB). And a predetermined short range wireless communication module for short range wireless communication including Bluetooth, WLAN, Wi-Fi, and ultra-wideband communication, and includes a communication protocol and / or driver for the short range wireless communication in software. .

According to the exemplary embodiment of the present invention, the wireless terminal connects a wireless section connecting a predetermined short range device 1140 and a predetermined short range wireless communication session through the short range communication unit 1135, and the short range device 1140 It is preferable to connect a predetermined communication channel with a predetermined server (or device) provided on the predetermined communication network through a wired section including the connected predetermined network.

According to an embodiment of the present invention, the short range communication unit 1135 communicates with the token agent providing server 215 through the short range device 1140 to install a predetermined token agent program in the wireless terminal. And a token agent program from the token agent providing server 215 in cooperation with the controller 1105.

According to another exemplary embodiment of the present invention, when the token agent program generates a predetermined token code for the predetermined token code-based payment processing in a challenge-response manner, the local area communication unit 1135 may control the controller 1105. And a predetermined communication channel with the payment processing server 1000 through the local area device 1140, and receive a predetermined challenge value for generating the token code from the payment processing server 1000. have.

According to another exemplary embodiment of the present invention, the short range device 1140 may be a payment terminal 145 for processing the token code based payment processing, and / or a short range communication module provided in the payment terminal 145. In this case, the local area communication unit 1135 connects the local area device 1140 with a predetermined local area communication channel in cooperation with the control unit 1105, and the token agent to the local area device 1140 through the local area communication channel. It is possible to provide the token code generated by the program.

The memory unit 1155 is input / output information when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the wireless terminal is performed. And / or a general term for a memory device for storing data; read only memory (ROM) corresponding to read-only memory, flash memory (FM), and electrically erasable and programmable read only (EEPROM). Memory) and the like. In general, the ROM stores system information that should not be deleted, and the flash memory stores operating system routines, call processing program routines, and / or application program routines provided through the wireless terminal and information or data therefor. The EEPROM stores terminal registration related parameters and a telephone number (eg, an address book) or at least one or more information and / or data extracted and / or generated while executing an application provided in the wireless terminal.

According to an embodiment of the present invention, the token generation information is read from an internal function configuration provided in the wireless terminal (for example, when the token agent program generates a token code in a time-synchronous manner, a timer provided in the wireless terminal). Read current time (or time) information from the token generation information), and / or stored in the token generation information area of the memory unit 1155, and / or included in the token agent program. The unit 1155 preferably stores at least one token generation information defined to be stored in a storage provided in the wireless terminal. For example, the memory unit 1155 stores MIN / ESN information for the wireless terminal in a NAM (Number Assignment Module) area, and / or at least one uniquely assigned to the token agent program in a predetermined token generation information area. You can store more than one secret key value.

The IC chip reader unit 1145 may be configured with IC chip related functions (eg, IC chip agent provided in the wireless terminal) provided through the IC chip standard including ISO / IEC 7816 and / or ISO / IEC 14443. Program) and the information and / or data exchange between the IC chip 1150 mounted or detached from the wireless terminal. For example, the IC chip reader unit 1145 provides information and / or data exchange between the IC chip agent program and the IC chip 1150 through an application protocol data unit (APDU).

Referring to the standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip 1150 mounted or detached from the customer wireless terminal may include a power supply (VCC), a reset signal (RST), a clock signal ( I / O interface to communicate with IC chip reader 1145 (e.g. command or data exchange, etc.) via contact points such as CLK, ground (GND), programming power supply (VPP), and / or input / output (I / O), etc. And a processor unit including at least one computing element including a central process unit (CPU), a micro process unit (MPU), and / or a coprocessor, a read only memory (ROM), and a random access (RAM). And a memory unit including at least one memory element including an EEPROM (Electrically Erasable and Programmable Read Only Memory), a flash memory (FM), and at least one memory element (eg, a ROM). In IC card A chip operating system (COS) for managing and operating resources is stored. When a predetermined power is supplied from the IC chip reader unit 1145 through a power supply (VCC) contact point of the input / output interface, the memory unit The COS stored in is loaded into a predetermined execution memory to control the overall operation of the IC chip 1150, and based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the contact point of the clock signal CLK (APDU) The data unit controls the exchange of information or data between the IC chip 1150 and the IC chip reader 1145.

According to another exemplary embodiment of the present invention, the token agent program may be provided in the IC chip 1150 (for example, the token agent program may be recorded on a recording medium provided in the IC chip 1150). The present invention is not limited thereby.

According to another exemplary embodiment of the present invention, when the token agent program is provided in the wireless terminal platform and / or the IC chip 1150, some of the token generation information may be included in the IC chip 1150. It is possible to be stored in the memory unit provided in the), by which the present invention is not limited.

Referring to FIG. 11, a predetermined token agent mounted on the wireless terminal and the token agent in connection with a token agent providing server 215 on the wireless network are received by a token agent and / or a predetermined token by the token agent. It comprises a communication processing unit 1180 for generating a code, or performing a communication function required to process the predetermined payment processing of the token code.

Referring to FIG. 11 according to a preferred embodiment of the present invention, the token agent mounted on the wireless terminal includes an input unit 1160 for receiving at least one or more information (or data) for generating the token code, and a predetermined token code. A reading unit 1165 that reads at least one token generation information required to generate the information; and a generating unit 1170 that generates a predetermined token code by applying the read token generation information to a predetermined token generation algorithm. And an output unit 1175 outputting the generated token code to the screen of the wireless terminal.

The input unit 1160 may receive at least one or more information (or data) for generating the token code in cooperation with the key input unit, and the input information (or data) generates a predetermined token code. Outputting a token generation command, and / or predetermined PIN (Personal Identification Number) information for internal authentication on the generated token code, and / or the generated token code on the wireless terminal screen, or the communication It includes at least one token code output command to be output to the outside of the wireless terminal through the wireless processing unit 1130 and / or short-range communication unit 1135 in conjunction with the processing unit 1180.

According to an embodiment of the present invention, the generation unit 1170 inputted from the key input unit through the input unit 1160 may be used as predetermined token generation information for generating a predetermined token code. And / or the token code generated by the generation unit 1170 may be combined with the token code in the process of being output (eg, outputted on the wireless terminal screen and / or outputted to the outside of the wireless terminal).

According to another exemplary embodiment of the present invention, when the token agent is provided in the IC chip 1150 mounted or detached from the wireless terminal, the PIN information may perform a user authentication procedure defined in the IC chip 1150. It is preferable to further comprise performing.

The reading unit 1165 may be configured to generate the token agent from the internal resources of the wireless terminal and / or the token agent internal code and / or the memory unit included in the memory unit 1155 and / or the IC chip 1150. Read at least one token code generation information defined to be used to generate a predetermined token code.

According to the exemplary embodiment of the present invention, the reader 1165 preferably reads time (or time) information required for generating the token code from the internal resource of the wireless terminal (eg, a timer resource in the wireless terminal). And / or read a predetermined secret key value set for generating the token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150. It is preferable to read a predetermined MIN / ESN from the NAM region of the memory unit 1155.

In addition, in the case of token generation information defined to apply a predetermined hash function among the read token generation information, the reader 1165 applies the predetermined hash function to the read token generation information to apply the corresponding token generation information. Preferably, the method further includes a function of converting (or limiting) a value within a predetermined size.

According to another exemplary embodiment of the present invention, the reading unit 1165 generates a real time from the payment processing server 1000 in association with the communication processing unit 1180 (for example, at random in the payment processing server 1000). And receiving the predetermined challenge value generated as the predetermined token generation information used to generate the predetermined token code in the generation unit 1170.

The generation unit 1170 generates an unpredictable predetermined token code according to a predetermined token generation algorithm based on at least one token generation information read by the reader 1165. Preferably, the data block includes a predetermined length of data blocks.

The output unit 1175 outputs the token code generated by the generation unit 1170 to the screen of the wireless terminal, and the wireless processing unit 1130 and / or the local area communication unit 1135 according to an embodiment. The payment terminal 145 for providing a portion (or all) of the generated token code to the payment processing server 1000, and / or processing the token code based payment processing through the local area communication unit 1135. Is preferably provided.

The communication processor 1180 receives a predetermined token agent to be mounted on the wireless terminal in connection with the token agent providing server 215 on the wireless network, and the customer wireless terminal through the control unit 1105. It is preferable to further comprise a functional configuration to be mounted (or installed) in the.

In addition, when the token agent receives a predetermined challenge value from the payment processing server 1000 in the process of generating a predetermined token code, the communication processor 1180 may perform the wireless processing unit 1130 and / or the near field. In connection with the communication unit 1135, a predetermined communication channel may be connected to the payment processing server 1000 (or the communication channel connection process may be omitted if the challenge value is received through a wireless message), and the payment may be made through the communication channel. It is desired to receive a predetermined challenge value dynamically generated at the processing server 1000.

In addition, when the token agent and / or a portion of the token code generated by the token agent are transmitted to the payment processing server 1000 through the wireless processing unit 1130 and / or the local area communication unit 1135, the communication The processor 1180 connects a predetermined communication channel to the payment processing server 1000 in cooperation with the wireless processor 1130 and / or the short range communication unit 1135, and to the payment processing server 1000 through the communication channel. It is preferable to transmit the generated token code and / or a portion of the token code.

In addition, when providing the token code and / or a portion of the token code generated by the token agent to the payment terminal 145 processing the token code based payment processing through the local area communication unit 1135, the communication The processor 1180 connects the predetermined terminal communication channel with the payment terminal 145 in cooperation with the local area communication unit 1135, and generates the token code to the payment terminal 145 through the local area communication channel and / Or it is desirable to send a portion of the token code.

According to another exemplary embodiment of the present invention, the wireless terminal may perform a function of the payment terminal 145 for processing the token code based payment processing, and for this purpose, the wireless terminal processes the token code based payment processing. It is possible to further comprise a payment unit 1185 in order to.

12 illustrates a token code structure according to an embodiment of the present invention.

More specifically, FIG. 12 shows a preferred embodiment of the token code generated by the token agent program, and each information position constituting the token code can be changed by those skilled in the art. Those skilled in the art to which the present invention pertains will be able to easily infer a token code structure including more information with reference to FIG. 12, and the present invention is not limited thereto.

Referring to FIG. 12, a token code generated by the token agent program is generated through a hash algorithm for generating a predetermined token code based on at least one token generation information in the token agent as shown in FIG. Characterized by including a predetermined hashing code, at least one or more information may be further included in the hashing code according to the intention of the skilled person and / or information subject to intuitively authenticate through the token code.

Referring to (b) of FIG. 12, the token code is a predetermined hashing code generated by a hash algorithm for generating a predetermined hash token code defined in the token agent program. It may further comprise PIN information, or may further comprise predetermined user input information input by the user (customer) as shown in (d) of FIG. 12, or the user as shown in (d) of FIG. It is possible to further include hashed input information (eg, reducing the length of the user input information to within a predetermined length) to which the predetermined hash function is applied to the input information, and the present invention is not limited thereto.

Referring to (e) of FIG. 12, the token code further includes the PIN information and the user input information in a predetermined hashing code generated through a hash algorithm for generating a predetermined hash token code defined in the token agent program. Or hashed input information applying a predetermined hash function to the PIN information and the user input information to the hashing code, as shown in FIG. It is not limited.

13 is a diagram illustrating a functional configuration of a payment terminal 145 according to an embodiment of the present invention.

In more detail, FIG. 13 illustrates a preferred function configuration of an offline payment terminal 145 which generates a predetermined telegram message related to payment processing using the token code and transmits it to the payment processing server 1000. As one of ordinary skill in the art to which the present invention pertains, the online payment terminal 145 (for example, provided in the form of a plug in a web browser) for payment processing using the token code with reference to FIG. 13. It can be easily inferred from the functional configuration of the.

Referring to FIG. 13, the payment terminal 145 basically includes a control unit 1305, a memory unit 1350, a card interface 1310, a key input unit 1320, a screen output unit 1315, a communication unit 1330, and a security unit. It includes a power supply for supplying power to the application module 1335, the printing unit 1340 and the payment terminal 145.

The control unit 1305 controls the overall operation of the payment terminal 145 in the functional configuration, manages the flow of information or data between each component, the configuration provided in the payment terminal 145 for payment processing using a token code Control elements, and include at least one or more processors and execution memory (e.g., registers and / or random access memory (RAM)) in hardware, including a Central Processing Unit (CPU) / Micro Processing Unit (MPU); And a bus (BUS) for inputting and outputting predetermined data, and is loaded from the predetermined recording medium into the execution memory in order to perform a function specific to the payment terminal 145 by software. Certain program routines and / or program data that are computed and processed by the processor (and thus, a payment destination using a token code For the payment processing using a predetermined program and / or token code recorded on the recording medium provided in the payment terminal 145 for the purpose of seeing the components that can be processed in software from the functional configuration provided in the payment terminal 145 Shown in the control unit 1305).

The memory unit 1350 is input / output information when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the payment terminal 145 is performed. Or a general term of non-volatile memory for storing data, and at least one or more including electrically erasable and programmable read only memory (EEPROM) and / or flash memory (FM) and / or hard disk drive (HDD) in hardware. It includes a storage means, the predetermined program routine and program data required for the control unit 1305 to perform a predetermined control function (for example, data input or output for the program routine to perform a predetermined function) It is characterized in that is stored.

The card interface 1310 provides an interface for reading at least one or more information or data included in a predetermined card to realize card payment, and is based on an ISO / IEC 7810 standard. MS interface that provides an interface between a card and the payment terminal 145, and / or a contact IC interface that provides an interface between the contact IC card and the payment terminal 145 based on ISO / IEC 7816 standard, and / Or a contactless IC interface providing an interface between the contactless IC card and the payment terminal 145 based on the ISO / IEC 14443 standard.

The key input unit 1320 is a terminal operator and / or from a predetermined key input means including a plurality of number keys, a character key for inputting characters, a function key, and / or the like. Alternatively, the user may input corresponding key data generated by clicking a predetermined key to the controller 1305, and the controller 1305 may input key data input through the key input unit 1320. Read and control a predetermined function and / or a predefined task corresponding to the key data in association with at least one component provided in the payment terminal 145.

According to a preferred embodiment of the present invention, the key input unit 1320 provides a function of key input means for inputting a predetermined token code and wireless terminal information generated by a token agent mounted on the wireless terminal 1100. It is preferable.

The screen output unit 1315 is a liquid crystal display (LCD) and / or by the control unit 1305 while the payment terminal 145 performs a predetermined function (eg, an electronic payment processing function using a card). And at least one information or data which is predefined or defined in real time to be output to a predetermined screen output means including a cathode ray tube (CRT) through a predefined screen interface. The information or data predefined to be output on the screen in 145 may be stored or generated by key data input through the key input unit 1320 and / or components included in the payment terminal 145. Information (or data), information (or data) transmitted and received through the communication unit 1330, and / or a predetermined operation result performed by the payment terminal 145. A (or data) comprises at least one.

According to a preferred embodiment of the present invention, the screen output unit 1315 is inputted during the payment processing process using the token code and / or information transmitted to the payment processing server 1000 and / or the payment processing server It is desirable to provide a function for outputting information received from 1000.

The communication unit 1330 performs a predetermined function with a server (or terminal) and / or the payment terminal 145 on a network while the payment terminal 145 performs a predetermined function (eg, an electronic payment processing function using a card). To provide a predetermined communication means for connecting a communication session with a terminal (or device) connected via a cable and / or the terminal (or device) connected with the payment terminal 145 through a predetermined short-range wireless communication. Certain wired networks and / or including hardware-added value added networks (VANs) or financial common networks or high-speed Internet (e.g., ADSL / VDSL / Cable Network /.../ satellite communications); A network communication unit 1330 for connecting a communication channel with a server (or terminal) on a wired or wireless network through a predetermined wireless network including a mobile communication network or a wireless data communication network, and / or Cable communication unit 1330 for connecting a communication session with a predetermined terminal (or device) through the cable communication, and / or Infrared Ray communication, RF (Radio Frequency) communication, Bluetooth (BlueTooth), Wireless LAN (Wireless) And at least one short range wireless communication unit 1330 for connecting a predetermined terminal (or device) and a short range wireless communication session through at least one short range wireless communication means including a LAN and Wi-Fi. And a communication protocol and / or a driver for connecting the communication channel (or communication session) in software.

According to an exemplary embodiment of the present invention, the short range wireless communication unit 1330 may further include a function of receiving a predetermined token code and wireless terminal information from the wireless terminal 1100 through the short range wireless communication. .

The secure application module (1335) is a confidentiality and / or authentication required by the payment terminal 145 in the process of performing the electronic payment and / or electronic payment using the card. And / or a secure and reliable structure within the payment terminal 145 without using a certificate server (or payment server) on a network for security requirements including integrity and / or nonrepudiation. As a safety device for performing the above, the payment terminal 145 encrypts a predetermined message (information or data) processed in the process of performing a predetermined security request function (eg, electronic payment and / or electronic payment function). Adds an authenticator that decrypts, prevents forgery (or tampering) of the message, or stores important information in the process of performing the security request function It is characterized in that it performs a function.

In general, the security application module 1335 is preferably composed of a predetermined security application module 1335 inserter and a security application module 1335 chip, the security application module 1335 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) with performance of 2 MIPS (Million Instructions Per Second) or more. It is preferable to comprise a.

In addition, the security application module 1335 may include at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the payment terminal 145 to perform a predetermined security request function. ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, authorization protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / deletion / disposal / initialization) / Reprocessing / cancellation command).

The printing unit 1340 may process the payment terminal 145 to perform a predetermined function (for example, an electronic payment processing function using a card) and / or predetermined information or data generated as a result (for example, a payment processing result). Information or data) to a predetermined printing device 1345 (for example, a receipt printer), and prints the printing information or data through the predetermined printing device 1345 according to a predefined printing form. It comprises a printing protocol and a driver for.

Referring to FIG. 13, the payment terminal 145 may include a text generation unit 1355 for generating a payment processing request message (or data) for payment processing using the token code, and the payment processing request message (or data). It comprises a transmission unit 1365 for transmitting to the payment processing server 1000, and a receiving unit 1360 for receiving the payment processing approval full text (or data) from the payment processing server 1000.

The full text generation unit 1355 generates a full text payment request (or data) for payment processing using the token code in addition to the conventional full text related to payment generated by the payment terminal 145.

According to another exemplary embodiment of the present invention, when the payment terminal 145 is an online payment terminal 145, the full text generation unit 1355 may provide predetermined payment processing approval request information for payment processing using the token code. It will perform the function you create.

The transmission unit 1365 transmits the payment processing request message (or data) generated by the message generation unit 1355 to the payment processing server 1000 through the communication unit 1330. When the communication network connected to the communication unit 1330 is an open communication network allowing external access, such as the Internet (or the payment terminal 145 is an online payment terminal 145), the transmission unit 1365 It is preferable to further comprise a function configuration for encrypting the payment processing request (or data) sent.

The receiving unit 1360 may receive a predetermined payment processing approval message (or data) (or payment processing error message) corresponding to the payment processing request message (or data) from the payment processing server 1000. .

14A and 14B illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 14A and 14B illustrate a 10-digit token code generated by the token agent provided in the wireless terminal and the generated 10-digit token code through the predetermined payment terminal 145 through the payment processing server. (1000) The present invention relates to a preferred method of transmitting and authenticating the token code in the payment processing server (1000). For convenience, the token agent may be configured to drive the token agent program and / or perform an internal authentication procedure. The process of entering PIN information is omitted.

14A and 14B illustrate only the token code transmitted from the payment process to the payment processing server 1000 in order to effectively explain the token code operation process, the present invention is common in the art. If the person having knowledge, the token code is included in the predetermined payment information (or data) including the predetermined payment information (or payment processing request information) for the token code-based payment processing and the wireless terminal information. It will be clearly understood that it is transmitted to the payment processing server 1000, whereby the present invention is not limited.

Referring to FIG. 14A, the reader 1165 may read the wireless terminal internal resource and / or the token agent internal code and / or by a predetermined token code generation command inputted by the input unit 1160 of the token agent program. Read at least one token code generation information defined by the token agent to be used to generate a predetermined token code from the memory unit 1155 and / or the memory unit included in the IC chip 1150 (1400). In operation 1405, the read one or more token generation information is provided to the generation unit 1170.

The generator 1170 generates a predetermined token code that is unpredictable by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1410), and outputting the token. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1415).

When the token code is output on the screen of the wireless terminal as described above, the token code is input to the payment terminal 145 through a predetermined key input means provided in the payment terminal 145 (1420) or the wireless The terminal and the payment terminal 145 are transmitted to the payment terminal 145 through a predetermined short-range communication means (1420), the payment terminal 145 is the token code through a predetermined payment network 150 The transaction is transmitted to the payment processing server 1000 (1425).

According to the exemplary embodiment of the present invention, the payment terminal 145 transmits the token code to the payment processing server 1000 through the payment network 150 for the token code based payment processing. In operation 145, the token code, wireless terminal information generating the token code, and predetermined payment information (or payment processing request information) for token-based payment processing are included in a predetermined payment processing request (or data). It is preferable to transmit to the payment processing server 1000.

Referring to FIG. 14B, the information receiving unit of the payment processing server 1000 receives a predetermined token code, wireless terminal information, and payment information (or payment processing request information) from the payment terminal 145 through the payment network 150. Receive (1430) the payment processing request message (or data) transmitted, including the information confirmation unit checks the wireless terminal information from the payment processing request message (or data) (1435), the confirmed payment processing request The full text (or data) is provided to the extraction unit (1440).

The extracting unit provided with the wireless terminal information extracts predetermined token agent information associated with the wireless terminal information (or corresponding to the received token code) from the storage medium (1445), and extracts the extracted token agent information. Provided to the authentication unit (1440).

According to an embodiment of the present invention, the information confirming unit preferably confirms the wireless terminal information by confirming caller information of the wireless terminal that has transmitted the token code, and / or the wireless terminal information is included in the token code. When received in association, the information verification unit preferably confirms the wireless terminal information received in association with the token code.

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that generated by the token code in the agent (1455), and compares the token code received through the information receiver with the generated token authentication code for the token code. Check the validity (1460). If the validity of the token code is authenticated (1465), the payment processing unit 1030 of the payment processing server 1000 performs payment processing information (or payment information) through predetermined payment means information associated with the wireless terminal information. Perform payment processing corresponding to

15A, 15B, and 15C are diagrams illustrating a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 15A, 15B, and 15C generate a 10-digit token code by receiving a predetermined challenge value from the payment processing server 1000 in the token agent provided in the wireless terminal, and generating the 10-digit token code. A 10-digit token code is transmitted to the payment processing server 1000 through a predetermined [payment terminal / financial terminal], and the payment processing server 1000 is a preferred embodiment for authenticating the token code. In the agent, a process of inputting predetermined PIN information to drive the token agent program and / or perform an internal authentication procedure is omitted.

15A and 15B illustrate only the token code transmitted from the payment process to the payment processing server 1000 in order to effectively explain the token code operation process, the present invention is common in the art. If the person having knowledge, the token code is included in the predetermined payment information (or data) including the predetermined payment information (or payment processing request information) for the token code-based payment processing and the wireless terminal information. It will be clearly understood that it is transmitted to the payment processing server 1000, whereby the present invention is not limited.

Referring to FIG. 15A, the authentication unit included in the payment processing server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium (1500), and passes the token agent program provided to the wireless terminal. Dynamically generating a predetermined challenge value to be transmitted (1505) and providing the wireless terminal information and the challenge value to the information transmitter, the information transmitter based on the wireless terminal information through the predetermined payment network 150 The generated challenge value is transmitted to the wireless terminal (1510).

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium (1515).

Referring to FIG. 15B, the reader 1165 of the token agent program receives a predetermined challenge value received from the payment processing server 1000 through the communication processor 1520 and includes the received challenge value. At least one token defined to be used by the token agent to generate a predetermined token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150 The code generation information is read (1525), and the read at least one token generation information is provided to the generation unit 1170 (1530).

The generation unit 1170 generates a predetermined token code that is unpredictable by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1535), and outputs the token. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1540).

When the token code is output on the screen of the wireless terminal as described above, the token code is inputted to the [payment terminal / financial terminal] through a predetermined key input means provided in the [payment terminal / financial terminal] (1545). Or, it is transmitted to the [payment terminal / financial terminal] through a predetermined short-range communication means provided in the wireless terminal and the [payment terminal / financial terminal] (1545), the [payment terminal / financial terminal] is a predetermined The token code is transmitted to the payment processing server 1000 through the payment network 150 (1550).

According to the exemplary embodiment of the present invention, the payment terminal / financial terminal transmits the token code to the payment processing server 1000 through the payment network 150 for the token code-based payment processing. [Payment terminal / financial terminal] has the token code, the wireless terminal information generating the token code, and predetermined payment information (or payment processing request information) for token-based payment processing. It is preferably included in the transmission to the payment processing server 1000.

Referring to FIG. 15C, the information receiving unit of the payment processing server 1000 receives a predetermined token code, wireless terminal information, and payment information (or payment processing request information) from the [payment terminal / financial terminal] through the payment network 150. (1555), the information verification unit confirms the wireless terminal information from the payment processing request message (or data) (1560), and confirms the received payment. The processing request message (or data) is provided to the extracting unit (1565).

The extracting unit provided with the wireless terminal information extracts predetermined token agent information associated with the wireless terminal information (or corresponding to the received token code) from the storage medium (1570), and extracts the extracted token agent information. Provided to the authentication unit (1575).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that of generating the token code in an agent (1580), and compares the generated token authentication code with the token code received through the information receiver for the token code. Validate (1585). If the validity of the token code is authenticated (1590), the payment processing unit 1030 of the payment processing server 1000 performs payment processing information (or payment information) through predetermined payment means information associated with the wireless terminal information. Perform payment processing corresponding to

16A and 16B illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 16A and 16B illustrate a 10-digit token code generated by the token agent provided in the wireless terminal, and the 10-digit token code generated by the wireless terminal determines a predetermined wireless network 140. The preferred embodiment of the present invention transmits the payment processing server 1000 and authenticates the token code in the payment processing server 1000. For convenience, the token agent runs the token agent program and / or performs an internal authentication procedure. The process of inputting predetermined PIN information to perform is omitted.

16A and 16B illustrate only the token code transmitted from the wireless terminal to the payment processing server 1000 in order to effectively explain the token code operation process, the present invention is common in the art. Those skilled in the art will clearly understand that the token code may be transmitted to the payment processing server 1000 in association with predetermined payment information (or payment processing request information) for the token code based payment processing. The present invention is not limited thereby.

Referring to FIG. 16A, the reader 1165 may read the wireless terminal internal resource and / or the token agent internal code and / or by a predetermined token code generation command inputted by the input unit 1160 of the token agent program. Read at least one token code generation information defined by the token agent to be used for generating a predetermined token code from the memory unit 1155 and / or the memory unit included in the IC chip 1150 (1600). In operation 1605, the read one or more token generation information is provided to the generation unit 1170.

The generation unit 1170 generates a predetermined token code that is unpredictable by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1610), and outputting the token. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1615), and interworks with the communication processing unit (1180) (1180) through the predetermined wireless network 140 through the payment processing server (1000). In operation 1620, the generated token code is transmitted.

According to another exemplary embodiment of the present invention, when the wireless terminal equipped with the token agent program performs a function of a predetermined [payment terminal / financial terminal] for the token code based payment processing, the output unit 1175 ) And the communication processor 1180 transmit the generated token code to the payment processing server 1000 via the wireless network 140 in association with the payment information (or payment processing request information).

Referring to FIG. 16B, the information receiving unit of the payment processing server 1000 receives a predetermined token code transmitted from the wireless terminal through the wireless network 140 (1630), and the information receiving unit receives the token code. Extracting and providing the wireless terminal information transmitting the token code in the form of the sender information to the extracting unit (1640), wherein the extracting unit is associated with the wireless terminal information from the storage medium (or the received token code); And extracts the predetermined token agent information (corresponding to the information) (1645) and provides the extracted token agent information to the authentication unit (1640).

According to an embodiment of the present invention, the information confirming unit preferably confirms the wireless terminal information by confirming caller information of the wireless terminal that has transmitted the token code, and / or the wireless terminal information is included in the token code. When received in association, the information verification unit preferably confirms the wireless terminal information received in association with the token code.

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that generated by the token code in the agent (1655), and compares the generated token authentication code with the token code received through the information receiver for the token code. Check the validity (1660). If the validity of the token code is authenticated (1665), the payment processing unit 1030 of the payment processing server 1000 performs payment processing information (or payment information) through predetermined payment means information associated with the wireless terminal information. Perform payment processing corresponding to

17A, 17B, and 17C illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, Figures 17a, 17b and 17c generate a 10-digit token code by receiving a challenge value from the payment processing server 1000 at the token agent provided in the wireless terminal, and generating the 10-digit token code. A 10-digit token code is transmitted from the wireless terminal through a predetermined wireless network 140 to the payment processing server 1000, and the payment processing server 1000 for the preferred embodiment of the method for convenience, for convenience, The process of inputting predetermined PIN information in order to drive the token agent program and / or perform an internal authentication procedure in the token agent is omitted.

17A and 17B illustrate only the token code transmitted from the wireless terminal to the payment processing server 1000 in order to efficiently explain the token code operation process, the present invention is common in the art. Those skilled in the art will clearly understand that the token code may be transmitted to the payment processing server 1000 in association with predetermined payment information (or payment processing request information) for the token code based payment processing. The present invention is not limited thereby.

Referring to FIG. 17A, the authentication unit included in the payment processing server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium (1700), and sends the token agent program included in the wireless terminal to the token agent program included in the wireless terminal. Dynamically generating a predetermined challenge value to be transmitted (1705), and providing the wireless terminal information and the challenge value to the information transmitter, the information transmitter based on the wireless terminal information through the predetermined wireless network 140 The generated challenge value is transmitted to the wireless terminal (1710).

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium (1715).

Referring to FIG. 17B, the reader 1165 of the token agent program receives a predetermined challenge value received from the payment processing server 1000 through the communication processor 1720, and includes the received challenge value. At least one token defined to be used by the token agent to generate a predetermined token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150 The code generation information is read (1725) and the read at least one token generation information is provided to the generation unit 1170 (1730).

The generation unit 1170 generates an unpredictable predetermined token code by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1735), and outputs the token code. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1740), and generates the generated token code to the payment processing server 1000 through a predetermined wireless network 140 in association with the communication processing unit 1180. The token token is transmitted (1745).

According to another exemplary embodiment of the present invention, when the wireless terminal equipped with the token agent program performs a function of a predetermined [payment terminal / financial terminal] for the token code based payment processing, the output unit 1175 ) And the communication processor 1180 transmit the generated token code to the payment processing server 1000 via the wireless network 140 in association with the payment information (or payment processing request information).

Referring to FIG. 17C, an information receiving unit of the payment processing server 1000 receives a predetermined token code transmitted from a wireless terminal through the wireless network 140 (1755), and the information receiving unit receives the token code. Extracting and providing the wireless terminal information transmitting the token code in the form of the caller information to the extracting unit (1765), wherein the extracting unit is associated with the wireless terminal information from the storage medium (or the received token code); And extracts predetermined token agent information (corresponding to 1770) and provides the extracted token agent information to the authenticator (1775).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that of generating the token code in the agent (1780), and compares the token code received through the information receiver with the generated token authentication code for the token code. Validation is verified (1785). If the validity of the token code is authenticated (1790), the payment processing unit 1030 of the payment processing server 1000 performs payment processing information (or payment information) through predetermined payment means information associated with the wireless terminal information. Perform payment processing corresponding to

18 is a diagram illustrating an implementation process in which a token code based payment processing is applied to a card settlement system according to an embodiment of the present invention.

In more detail, Figure 18 illustrates an implementation method in which a token code-based payment processing method according to the present invention is applied to a card payment system including at least one credit card, a debit card, and a check card. In order to minimize the VAN fee burden in a predetermined payment terminal 145 for the embodiment of the wireless terminal information and token code for the token code-based payment processing including the card payment related to the full text.

However, the implementation method of applying the token code-based payment processing method according to the present invention to the card payment system is not limited to the case of this figure 18, and those skilled in the art to which the present invention belongs, Various implementation methods for applying the token code-based payment processing method according to the present invention to the card payment system with reference to 18 (e.g., a method for transmitting wireless terminal information and token code to the server before / after the card payment processing is performed) ) Can be easily inferred.

Referring to FIG. 18, a payment terminal 145 (e.g., a credit authorization terminal (CAT)) switches to a token code based payment mode according to the present invention at the request of a customer, inputs a predetermined payment amount, and / or Receiving the payment amount from the POS, generates predetermined payment information (1800) that satisfies the components necessary for the card payment processing (e.g., including information to be included in the full payment processing request) (1800), included in the payment information in the process Uninformed information is card information to be read from the customer-owned card medium.

When the payment information is generated as described above, the payment terminal 145 (eg, the payment terminal 145 switched to the token code based payment mode) requests to input the customer wireless terminal information through a predetermined key input means. (1805).

If the customer wireless terminal information is input (1810), the payment terminal requests to input a predetermined token code generated by the token agent provided in the wireless terminal 1100 through a predetermined key input means (1815). ), The customer wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (1820), and the driven token agent generates at least one token generation information and a token. A predetermined token code is generated based on an algorithm and output to the screen of the wireless terminal 1100 (1825). The customer outputs the output token code through a predetermined key input unit provided in the payment terminal 145. Enter it.

According to another exemplary embodiment of the present invention, when the wireless terminal 1100 and the payment terminal 145 are provided with a predetermined short-range communication function, the wireless terminal information and the token code are transmitted through the short-range communication. 145).

If the generated token code is input (1830), the payment terminal 145 performs a predetermined payment process including the wireless terminal information, the token code, and the generated payment information input through the key input means. A request message is generated (1835), and the generated payment processing request message is transmitted to the server (for example, a server that performs validation and payment processing for the token code) (1840).

The server receiving the payment processing request message from the payment terminal 145 reads the payment processing request message and extracts the wireless terminal information and the token code (1845), and the wireless terminal from the storage medium 110. Extracts predetermined token agent information associated with the information, and generates the same token generation information and token generation algorithm as the token agent included in the wireless terminal 1100 used to generate the token code based on the extracted token agent. Generate a predetermined token authentication code through (1850), and checks the validity of the received token code by comparing the received token code with the generated token authentication code (1855).

If the validity of the received token code is not authenticated (e.g., the token code and the token authentication code do not match) (1860), the server generates a predetermined payment processing error message, and the payment terminal 145 And prints a receipt including the full text of the payment processing error (1865).

On the other hand, if the validity of the received token code is authenticated (for example, if the token code and the token authentication code is matched) (1860), the server is a predetermined payment means associated with the wireless terminal information from the storage medium 110 Extracts (or payment means) and performs predetermined payment processing on payment information included in the payment processing request message (1870), generates a predetermined payment processing approval message corresponding to the payment processing result, and generates the payment. The mobile station 145 transmits the output to the terminal 145 and prints a receipt including the contents of the payment processing approval message (1875).

According to the exemplary embodiment of the present invention, the server may further perform a process of storing a predetermined payment approval processing history corresponding to the payment approval result in a predetermined storage medium 135 in association with the payment means information. .

Figure 19 illustrates the entire payment processing request for token code-based payment processing according to an embodiment of the present invention.

More specifically, FIG. 19 includes a token code based payment approval request identifier according to the present invention in a transaction classification of a payment processing request message, and a wireless terminal complying with the card number system in a track-II data area of the payment processing request message. For the full payment processing request for token code-based payment processing, characterized in that it comprises information and token code.

Referring to FIG. 19, the wireless terminal information (eg, 11-digit numeric character) is included in 19-digit card information (eg, 16-digit card number and 3-digit CVC number), and the VAN company that receives the full payment processing request. In order to relay the payment processing request full message to the server normally, the first four digits of the 19-digit card information to include the server access number, and the remaining 11 digits of the wireless terminal information to include. In addition, the token code is included by allocating 10 characters to the validity area of the track-II data area.

20 illustrates an implementation process in which token code based payment processing is applied to an online payment system according to an embodiment of the present invention.

More specifically, FIG. 20 illustrates an implementation method of applying a token code-based payment processing method according to the present invention to an online payment system including an internet shopping mall. Specifically, in FIG. 20, an online payment process is performed without a predetermined payment method. It is about the implementation method.

Referring to FIG. 20, when a customer connects to a web server providing token code based payment processing according to the present invention and requests a token code based online payment (2000), the web server connects to the wired terminal 145. Generates corresponding predetermined payment information (2005), and transmits the wired terminal 145 information and the generated payment information to a predetermined server (for example, a server providing token code based online payment processing) (2010). ).

The server receiving the wired terminal 145 information is generated through the wireless terminal information for token-based online payment according to the present invention and the token agent provided in the wireless terminal 1100 to the wired terminal 145. In order to request a predetermined token code input (2015), the customer wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (2020), and the driven token agent Generates a predetermined token code based on at least one token generation information and a token generation algorithm and outputs the predetermined token code to the screen of the wireless terminal 1100 (2025), wherein the customer outputs the output token code to the wired terminal. Input via a predetermined key input means.

According to another exemplary embodiment of the present invention, when a predetermined short range communication function is provided between the wireless terminal 1100 and the wired terminal, the wireless terminal information and the token code are transferred to the wired terminal 145 through the short range communication. It is possible to be input.

If the generated token code is input (2030), the wired terminal transmits the wireless terminal information and the token code input through the key input means to the server (2035).

The server, having received the wireless terminal information and the token code from the wired terminal, extracts predetermined token agent information associated with the wireless terminal information from the storage medium 110 and based on the extracted token agent, the wireless terminal. Generate a predetermined token authentication code through the same token generation information and token generation algorithm that the token agent included in the terminal 1100 used to generate the token code (2040), the received token code and the generated token The validity of the received token code is verified by comparing authentication codes (2045).

If the validity of the received token code is not authenticated (eg, if the token code and token authentication code do not match) (2050), the server generates predetermined token code authentication error data, and the wired terminal 145 And transmits the result to the output (2055).

On the other hand, if the validity of the received token code is authenticated (for example, if the token code and token authentication code match) (1660), the server is a predetermined payment means associated with the wireless terminal information from the storage medium 110 Extract information (2060), process payment for payment information received from the web server through the extracted payment means information (2065), and generate a predetermined payment processing history corresponding to the payment processing to the wired Transmitting and outputting to the terminal 145 (2070), and stores the payment means information (or payment means information and payment processing details in association with the predetermined author medium (2075).

21 illustrates an implementation process of applying a token code based payment process to a wireless payment system according to an embodiment of the present invention.

More specifically, FIG. 21 illustrates an implementation method of applying a token code based payment processing method according to the present invention to a WAP / IC chip based wireless payment system using a customer wireless terminal 1100. Those skilled in the art will already be familiar with the WAP / IC chip-based wireless payment system and wireless payment procedure, so a detailed description thereof will be omitted, and the present invention is not limited thereto.

Referring to FIG. 21, a server performing token code-based payment processing through the wireless terminal 1100 transmits predetermined payment information (eg, payment amount information and payment request) to the wireless terminal 1100 through the wireless terminal information. At least one store (shopping mall) information, payment method information (or payment method selection information), thereby WAP-based and / or IC chip-based wireless payment process is performed.) And / or payment request information (e.g. server By transmitting and outputting information to request to perform a WAP-based wireless payment procedure), the wireless terminal 1100 requests that the WAP / IC chip-based wireless payment is performed (2100).

Upon receipt of the payment information and / or payment request information, the wireless terminal 1100 performs wireless payment based on a WAP / IC chip according to a predetermined wireless payment procedure (2105), and during the wireless payment procedure, the present invention is performed. When a token code input is requested (2110), the wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (2115). A predetermined token code is generated based on at least one token generation information and a token generation algorithm and transmitted to the server (2120).

In the process of receiving the token code from the wireless terminal 1100, the server extracts caller information for the wireless terminal 1100 as the customer wireless terminal information and associates it with the wireless terminal information from the storage medium 110. Extracted predetermined token agent information, and based on the extracted token agent, the token agent provided in the wireless terminal 1100 uses the same token generation information and token generation algorithm as the token agent used to generate the token code. Generating a token authentication code (2125), and validates the received token code by comparing the received token code with the generated token authentication code (2130).

If the validity of the received token code is not authenticated (eg, the token code and the token authentication code do not match) (2135), the server generates predetermined token code authentication error data to generate the wireless terminal 1100. And transmits it to (2140).

On the other hand, if the validity of the received token code is authenticated (for example, if the token code and token authentication code match) (1660), the server is a predetermined payment means associated with the wireless terminal information from the storage medium 110 Extract information (2145), process payment for payment information received from the web server through the extracted payment means information (2150), and generate a predetermined payment processing history corresponding to the payment processing to the wired The transmission and output to the terminal (2155).

Through the payment processing method and system according to the present invention, when a customer performs a financial transaction, there is an advantage that a secure financial transaction is possible through a predetermined token code volatilized by time and / or by a random random variable. .

In addition, by using the token generation program information associated with the financial means owned customer information (and / or customer-owned wireless terminal information), financial means information (eg, financial account information, credit card information, debit card information, cash card) More convenient and safe financial transactions are possible without exposing information, check card information, prepaid card information, electronic money information, etc.).

Claims (78)

  1. delete
  2. delete
  3. delete
  4. delete
  5. delete
  6. delete
  7. delete
  8. delete
  9. delete
  10. delete
  11. delete
  12. delete
  13. delete
  14. delete
  15. delete
  16. delete
  17. delete
  18. delete
  19. delete
  20. delete
  21. delete
  22. delete
  23. delete
  24. delete
  25. delete
  26. delete
  27. delete
  28. delete
  29. delete
  30. delete
  31. delete
  32. delete
  33. delete
  34. delete
  35. delete
  36. delete
  37. delete
  38. delete
  39. delete
  40. delete
  41. delete
  42. delete
  43. delete
  44. delete
  45. delete
  46. delete
  47. delete
  48. delete
  49. An information storage unit for mapping a token code to be dynamically displayed on a screen of the wireless terminal and a payment means of the customer by a token agent program provided in a wireless terminal of a customer;
    An information receiving unit which dynamically displays the screen of the wireless terminal by the token agent program and then receives a key input token code and customer information identifying a customer who requested a payment;
    An authentication unit for processing the validity of the token code by comparing the token code generated based on the received customer information and the token agent information mapped with the received token code; And
    When the token code is authenticated, the payment processing unit for processing the approval process of the payment is performed through the payment means mapped to the authenticated token code;
    The information storage unit,
    Token agent information for identifying a token code dynamically displayed on the screen of the wireless terminal by a token agent program included in the wireless terminal of the customer and payment information for identifying a payment means owned by the customer. The payment processing device characterized in that the storage in association with the means information in the storage medium.
  50. The method of claim 49, wherein the token agent information,
    A unique key value assigned to the token agent program provided in the wireless terminal,
    Token generation algorithm information and token generation information for generating or authenticating the token code,
    And at least one of token generation program information for identifying a token generation program for generating the token code by substituting one or more token generation information in the token generation algorithm.
  51. The method of claim 50, wherein the token generation program,
    Payment processing device, characterized in that included in the token agent program, or implemented separately from the token agent program.
  52. The method of claim 49, wherein the token code,
    Payment processing device, characterized in that the code is generated for one-time by substituting one or more token generation information to the token generation algorithm provided in the token generation program.
  53. The method of claim 50 or 52, wherein the token generation information,
    Pre-stored (or assigned) values,
    A synchronized time (or time) value at the time the token code is generated,
    And a combination of any one or two or more of the values received through the communication network to which the wireless terminal is connected.
  54. The method of claim 49, wherein the information receiving unit,
    The payment processing device, characterized in that for receiving the payment information for requesting payment using the token code.
  55. The method of claim 49, wherein the information receiving unit,
    Receive the token code and customer information from a separate terminal device to which the token code is input, or
    And receiving the token code and the customer information from the wireless terminal of the customer to which the token code is input.
  56. 50. The method of claim 49,
    The information receiver,
    Receiving authentication information associated with the mapped payment means information,
    The payment processing unit,
    And comparing the received authentication information with the authentication information of the payment means information to process the validity of the approval procedure of the payment to be authenticated.
  57. 50. The method of claim 49,
    The storage medium,
    It is provided in the payment processing device, or on the network,
    Payment means information stored in the storage medium,
    Or at least one of credit card information, debit card information, cash card information, check card information, prepaid card information, financial account information, and electronic money information corresponding to the payment method issued to the customer from a payment method issuing agency; or
    And a payment method mapped to a payment means issued to a customer from a payment means issuing agency or including information on the customer on which the payment means is issued.
  58. delete
  59. delete
  60. delete
  61. delete
  62. delete
  63. delete
  64. delete
  65. delete
  66. delete
  67. delete
  68. delete
  69. delete
  70. delete
  71. delete
  72. delete
  73. delete
  74. delete
  75. delete
  76. delete
  77. delete
  78. delete
KR1020050076511A 2005-08-19 2005-08-19 Device for Processing a Payment KR101140223B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020050076511A KR101140223B1 (en) 2005-08-19 2005-08-19 Device for Processing a Payment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020050076511A KR101140223B1 (en) 2005-08-19 2005-08-19 Device for Processing a Payment

Publications (2)

Publication Number Publication Date
KR20070021826A KR20070021826A (en) 2007-02-23
KR101140223B1 true KR101140223B1 (en) 2012-04-26

Family

ID=43653709

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020050076511A KR101140223B1 (en) 2005-08-19 2005-08-19 Device for Processing a Payment

Country Status (1)

Country Link
KR (1) KR101140223B1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014043278A1 (en) * 2012-09-11 2014-03-20 Visa International Service Association Cloud-based virtual wallet nfc apparatuses, methods and systems
KR101505847B1 (en) 2013-01-07 2015-04-07 주식회사 케이지이니시스 Method for Validating Alliance Application for Payment
KR101542111B1 (en) * 2013-12-20 2015-08-12 주식회사 씽크풀 Method for payment using card, digital system, and settlment side system thereof

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011112396A2 (en) * 2010-03-09 2011-09-15 Visa International Service Association System and method including customized linkage rules in payment transactions
WO2012151590A2 (en) * 2011-05-05 2012-11-08 Transaction Network Services, Inc. Systems and methods for enabling mobile payments
KR20130132672A (en) * 2012-05-21 2013-12-05 김주한 Mobile communication terminal for use as a payment terminal applications and application service provider system and method
KR101479378B1 (en) * 2012-08-29 2015-01-05 주식회사 한국사이버결제 Authentication code based payment method using mobile terminal
CN105934771B (en) 2013-11-19 2020-05-05 维萨国际服务协会 Automatic account provisioning
KR101708281B1 (en) * 2015-05-22 2017-02-20 주식회사 나이스홀딩스 Pos and payment method using pos based on user terminal
KR20170086957A (en) * 2016-01-19 2017-07-27 삼성전자주식회사 Device for Performing Transaction and Method Thereof
KR101680016B1 (en) * 2016-08-04 2016-12-06 김주한 Payment ASP System and Methods using a mobile communication terminal
KR102104132B1 (en) * 2018-06-15 2020-05-26 나이스페이먼츠 주식회사 Apparatus for services that support integrated mobile easy payment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20010008360A (en) * 2000-11-27 2001-02-05 박기오 A credit card payment method for electronic commerce
KR100354390B1 (en) * 2000-07-27 2002-09-27 이문영 credit card processing method using a mobile phone
KR20030005986A (en) * 2001-07-11 2003-01-23 주식회사 비즈모델라인 Method for the process of certification using mobile communication devices with the function of wireless certification(digital signature)
KR20040061248A (en) * 2002-12-30 2004-07-07 노틸러스효성 주식회사 System and method for credit payment using mobile communication terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100354390B1 (en) * 2000-07-27 2002-09-27 이문영 credit card processing method using a mobile phone
KR20010008360A (en) * 2000-11-27 2001-02-05 박기오 A credit card payment method for electronic commerce
KR20030005986A (en) * 2001-07-11 2003-01-23 주식회사 비즈모델라인 Method for the process of certification using mobile communication devices with the function of wireless certification(digital signature)
KR20040061248A (en) * 2002-12-30 2004-07-07 노틸러스효성 주식회사 System and method for credit payment using mobile communication terminal

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014043278A1 (en) * 2012-09-11 2014-03-20 Visa International Service Association Cloud-based virtual wallet nfc apparatuses, methods and systems
KR101505847B1 (en) 2013-01-07 2015-04-07 주식회사 케이지이니시스 Method for Validating Alliance Application for Payment
KR101542111B1 (en) * 2013-12-20 2015-08-12 주식회사 씽크풀 Method for payment using card, digital system, and settlment side system thereof

Also Published As

Publication number Publication date
KR20070021826A (en) 2007-02-23

Similar Documents

Publication Publication Date Title
AU2018202542B2 (en) Automated account provisioning
US9161218B2 (en) System and method for provisioning over the air of confidential information on mobile communicative devices with non-UICC secure elements
EP2378451B1 (en) User authentication in a tag-based service
EP1216538B1 (en) Method and apparatus for executing secure data transfer in a wireless network
KR100506432B1 (en) Method for enabling pki functions in a smart card
US20120129492A1 (en) System and method for transaction authentication using a mobile communication device
EP1455499A9 (en) Security element commanding method and mobile terminal
US20130166456A1 (en) System and Method for Remote Payment Based on Mobile Terminal
KR20070048815A (en) System and method for the one-time password authentication by using a smart card and/or a mobile phone including a smart-card chip
EP2365469A1 (en) Method for performing payment transaction using personal mobile device and arrangement for personal mobile device
RU2411670C2 (en) Method to create and verify authenticity of electronic signature
CN102630083B (en) System for using mobile terminal to carry out card operation and method thereof
KR20060103797A (en) System and method for authenticating user, server for transacting merchandise(or contents) and recording medium
CN105260886A (en) Payment processing method and device, NFC (Near Field Communication) portable terminal and wearable terminal
KR20060102456A (en) System and method for authenticating user, server for authenticating user and recording medium
KR20090114585A (en) Method and System for Processing Cash Payment by Using USIM and Recording Medium
FR2809260A1 (en) Method for crediting a prepaid account through a telecommunication network, uses information on banking card stored in mobile telephone SIM which is sent to a prepaid account management system
KR101585601B1 (en) Method for Embodying Once Authentication Code by using Multiple Media Division Authentication
KR20070020338A (en) System and Method for Operating Coupons, Mobile Devices, Server for Operating Coupons, Recording Medium and Information Storing Medium
US9319882B2 (en) Method for mutual authentication between a terminal and a remote server by means of a third-party portal
KR101140223B1 (en) Device for Processing a Payment
KR101926020B1 (en) System for Operating a Payment by using Dynamic Determined Authentication Number
KR20130061165A (en) Method for providing network type one time password by using a medium for near field communication
KR100858146B1 (en) Method for personal authentication using mobile and subscriber identify module and device thereof
KR100715560B1 (en) Mobile Devices for Mobile Payment, System and Method for Mobile Payment by Using Mobile Devices and Recording Medium

Legal Events

Date Code Title Description
A201 Request for examination
A107 Divisional application of patent
E902 Notification of reason for refusal
A107 Divisional application of patent
E701 Decision to grant or registration of patent right
GRNT Written decision to grant
FPAY Annual fee payment

Payment date: 20150421

Year of fee payment: 4

FPAY Annual fee payment

Payment date: 20160420

Year of fee payment: 5

FPAY Annual fee payment

Payment date: 20170420

Year of fee payment: 6

FPAY Annual fee payment

Payment date: 20180420

Year of fee payment: 7