KR101583156B1 - Card reader, terminal and method for processing payment information thereof - Google Patents

Card reader, terminal and method for processing payment information thereof Download PDF

Info

Publication number
KR101583156B1
KR101583156B1 KR1020140131078A KR20140131078A KR101583156B1 KR 101583156 B1 KR101583156 B1 KR 101583156B1 KR 1020140131078 A KR1020140131078 A KR 1020140131078A KR 20140131078 A KR20140131078 A KR 20140131078A KR 101583156 B1 KR101583156 B1 KR 101583156B1
Authority
KR
South Korea
Prior art keywords
card
information
encryption key
key
password
Prior art date
Application number
KR1020140131078A
Other languages
Korean (ko)
Other versions
KR20140128912A (en
Inventor
김혜정
윤상진
Original Assignee
한국정보통신주식회사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 한국정보통신주식회사 filed Critical 한국정보통신주식회사
Priority to KR1020140131078A priority Critical patent/KR101583156B1/en
Publication of KR20140128912A publication Critical patent/KR20140128912A/en
Application granted granted Critical
Publication of KR101583156B1 publication Critical patent/KR101583156B1/en

Links

Images

Abstract

The present invention relates to a card reader, a terminal, and a payment information processing method using the same, wherein the card reader includes: a connector connected to be able to communicate with an external terminal; A reader unit for acquiring IC card (Integrated Circuit Card) information; A layer configuration unit configured to randomly configure a key input layer in which a plurality of keys for inputting a password are arranged; An interface for transmitting information on a randomly configured key input layer to an external terminal and receiving positional information on an IC card password input on a key input layer from an external terminal; And a password detector for processing received location information to detect a password input from an external terminal.

Description

[0001] The present invention relates to a card reader, a terminal, and a payment information processing method using the same,

The present invention relates to a method of processing payment information using a card reader connectable to a terminal such as a mobile phone.

Typically, a card payment terminal is equipped with a magnetic stripe reader (MSR) module for reading the encoded card information on the magnetic strip of the card. At this time, the card information read through the magnetic strip reader is in the form of an analog signal and is in an unencrypted plaintext information state.

In addition, an IC card called a smart card is a card having a microprocessor and a memory, and can store and process information in the card, thereby minimizing the risk of forgery and alteration of the magnetic card and providing a variety of services . The storage capacity is higher than that of the conventional magnetic card, so that it is possible to perform various additional functions requiring additional information storage, and the security problem can be improved.

IC card is divided into contact type and non-contact type depending on the method of use. The contact type IC card is a type of IC card having a metal pattern on the front face of a card. The contactless type IC card includes a module and an antenna So that card information can be read through an IC card reader provided in the card payment terminal.

Such a card settlement terminal is generally connected to a relay server or a VAN company server through a dedicated on / off line to perform a credit card settlement service. However, in recent years, there has been an increasing demand for credit card payment service in connection with a conventional mobile terminal rather than a dedicated payment terminal.

The present invention provides a card reader, a terminal, and a payment information processing method using the card reader, which can improve security for card related information.

A card reader according to an embodiment of the present invention includes: a connector communicably connected to an external terminal; A reader unit for acquiring IC card (Integrated Circuit Card) information; A layer configuration unit configured to randomly configure a key input layer in which a plurality of keys for inputting a password are arranged; A first encryption key for encrypting layout information of the randomly configured key input layer is received through the connector and the layout information for the randomly configured key input layer is encrypted with the first encryption key, An interface for receiving location information on an IC card password input on the key input layer from the external terminal; And a password detector for processing the received location information to detect a password input from the external terminal.

According to another aspect of the present invention, there is provided a terminal comprising: a connection port including at least one terminal connected to a card reader for acquiring IC card information; A first encryption key generator for generating a first encryption key; Wherein the card reader transmits the first encryption key to the card reader through the connection port, and the card reader transmits layout information on the randomly configured key input layer encrypted with the first encryption key, Encrypts the position information of the IC card password input on the input layer with the second encryption key and transmits the encrypted information to the card reader, and transmits a transaction approval request including the detected password using the transmitted position information An interface for receiving a message from the card reader; And a communication module for transmitting the received transaction approval request telegram to a relay server for card settlement.

According to another aspect of the present invention, there is provided a payment information processing method for processing payment information in a card reader including a connector communicably connected to an external terminal and a reader for acquiring card information, the method comprising: Randomly configuring a key input layer in which a plurality of keys for inputting a password are arranged; Receiving a first encryption key for encrypting placement information for the key input layer; Generating a second encryption key for encrypting location information on an IC card password input on the key input layer; Encrypting layout information for the second encryption key and the key input layer using the first encryption key and transmitting the encryption information to the external terminal; Receiving location information on an IC card password input on the key input layer encrypted with the second encryption key from the external terminal; Processing the received location information to detect a password input from the external terminal; And generating a transaction approval request message including the detected password and transmitting the transaction approval request message to the external terminal.

The payment information processing method may be embodied as a computer-readable recording medium on which a program for execution by a computer is recorded.

According to an embodiment of the present invention, a key input layer for inputting a password is randomly configured in a card reader for inputting and processing a card password, The terminal encrypts the location information of the password input by the user with the encryption key received from the card reader and transmits the encrypted location information to the card reader so as to prevent mutual leakage of the password in a multi- The security can be greatly improved.

1 is a system configuration diagram illustrating a payment method of a terminal using a card reader according to an embodiment of the present invention.
2 is a perspective view illustrating an embodiment of a connection method between a mobile terminal and a card reader.
3 is a block diagram illustrating a configuration of a terminal according to an embodiment of the present invention.
4 is a block diagram showing a configuration of a card reader according to an embodiment of the present invention.
5 is a flowchart illustrating a payment information processing method according to an embodiment of the present invention.
6 is a timing chart showing an embodiment of operations of a card reader, a terminal, and relay servers for processing IC card payment information.
7 is a diagram showing an example of a key input layer for inputting a password.
8 is a graph showing an example of location information of an inputted password.
9 is a timing chart showing an operation of a card reader, a terminal, and relay servers for processing magnet card payment information according to an embodiment of the present invention.

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings.

First, the terms used in the specification of the present invention will be briefly defined, and then an embodiment of the present invention will be described.

The term " terminal "described in this specification may include a mobile phone, a smart phone, a laptop computer, a digital broadcast terminal, a PDA (Personal Digital Assistants), a PMP (Portable Multimedia Player) The present invention is not limited thereto, and may be various devices capable of user input and information display.

The term "relay server" refers to a server of a VAN company that relays a credit card electronic payment. However, various types of servers related to credit card electronic payment may also be applicable. The actual payment relay function and other additional functions may be separated into separate server types.

1 is a block diagram of a terminal settlement system using a card reader according to an embodiment of the present invention.

An electronic payment system according to an embodiment of the present invention includes a terminal 100, a card reader 200, a relay server 300, and a card issuer server 500.

For example, the terminal 100 performs wireless communication through a general mobile communication network 30 and transmits various messages such as a Short Message Service (SMS), a Multimedia Messaging Service (MMS) A cellular phone that transmits / receives at least one of the cellular phones.

The terminal 100 can access a mobile communication network 30 and use a personal digital assistant (PDA) or the like capable of transmitting and receiving data to and from an IP (Internet Protocol) network 50 such as the Internet have.

The relay server 300 is a server of a VAN (Value Added Network) company that provides a billing agency service in an electronic payment system using a credit card 10, for example.

However, the present invention is not limited to this, but may be a server for relaying only the purchase of a paper other than a server for payment by the relay server 300, or a simple relay server connected to a server of a general card company. Further, the card company server 500 represents the server of the card company who issued the credit card 10 above.

In the embodiment of the present invention, the seller's terminal 100 shown in FIG. 1 is used in connection with the card reader 200. Here, the card reader 200 may have a structure in which the card reader 200 is inserted into and connected to a connection port including an earphone and a microphone connection terminal of the terminal 100.

The terminal 100 is provided with a payment program 110 when the card is paid through the card reader 200 and transmits a transaction approval request message to the relay server 300 using the payment program 110 to make an approval request And performs credit settlement processing.

When the transaction is approved or canceled using the payment program 110, the terminal 100 transmits a message including a receipt related to transaction approval or cancellation to the purchaser's terminal and a receipt related to issuance or cancellation of the cash receipt Can be generated and transmitted.

In the embodiment of the present invention, the relay server 300 shown in FIG. 1 registers and stores seller information using the terminal 100 from an affiliate shop in advance. Here, the seller information includes a telephone number of the seller, and may further include a name of the seller, a name of a merchant to which the seller belongs, a business registration number, and the like.

Also, the relay server 300 can manage the transaction information of the seller or the franchisee by assigning an identification ID to each seller or each franchisee. At this time, the relay server 300 can directly manage the transaction information of the seller or the merchant through a separate additional server. In addition, the relay server 300 may provide a payment program 110 provided in the seller's terminal 100. [

In the embodiment of the present invention, the payment program 110 is provided to the seller's terminal 100 using, for example, a VM (Virtual Machine) downloading method. To this end, the relay server 300 may transmit a call back type message to the seller's terminal 100 for downloading the VM.

Thereafter, when a predetermined password is received from the seller's terminal 100 that has received the callback type message, the payment program 110 is transmitted to the seller's terminal 100.

If the payment program 110 is previously installed in the seller's terminal 100, the VM downloading operation may be omitted. In addition, upon payment of the credit card 10, the buyer's signature is inputted through the touch pad provided in the seller's terminal 100, and the signature information is transmitted to the relay server 300 together with the transaction approval request message.

Although the payment program 110 is provided using the VM download method, this is an example, and it is possible to transmit the payment program 110 to the seller's terminal 100 by using various known program transmission methods.

For example, a seller may access an affiliate site on the Internet or an application market such as an Android market or an app store, enter information of a seller and a seller terminal, join a member, 110 may be downloaded from the web.

At this time, the uploading, updating information or other management of the settlement program 110 may be performed in the relay server 300 or in another type of server.

Hereinafter, a connection relationship between the terminal 100 and the card reader 200 and one embodiment of the respective components will be described in detail with reference to FIGS. 2 to 4. FIG.

2, the card reader 200 is inserted into the insertion groove 134 of the terminal 100 to connect the card reader 200 to the connection port including the earphone connection terminal 133 and the microphone connection terminal 132 You can connect.

For example, the card reader 200 may be electrically connected to a connection port including the earphone connection terminal 133 and the microphone connection terminal 132 of the terminal 100 via the connector 210, The terminal 200 can manage the transaction information with the terminal 100 by giving a separate identification ID.

The card reader 200 is provided with a magnetic strip reader (MSR) in the housing so that it can read and read the card information recorded in the magnetic field of the credit card 10. In the embodiment of FIG. 2, it is assumed that the MSR is provided in the card reader 200 to read the card information from the credit card 10 of the magnetic system.

When the credit card 10 is inserted into the card insertion slot 220 of the card reader 200 and slidingly moved, the card information is read through the MSR. The card reader 200 is formed with a card insertion slot 220 for inserting a credit card 10. The card reader 200 includes a card insertion slot 220 for inserting a credit card 10 ) Is inserted and slidingly moved.

The card information read by the card reader 200 is received through the microphone connection terminal 132 of the terminal 100 and transmitted to a control unit (to be described later) of the terminal 100. The control unit of the terminal 100 generates a transaction approval request message using the card information and the payment program 110 and transmits the transaction approval request message to the relay server 300 through the mobile communication network 30. [

At this time, the card information read through the card reader 200 is transmitted to the control unit of the terminal 100 through the connector 210 and the microphone connection terminal 132 of the card reader 200.

The card reader 200 according to the embodiment of the present invention can read card information of a credit card made of an RF type non-contact type IC card or a contact type IC card as well as the magnetic card 10 described above. For this purpose, a reader unit (not shown) provided in the card reader 200 for reading card information includes a magnetic strip reader (MSR) and an IC card reader for reading IC card information.

For example, in the case of a contactless IC card, an IC card reader provided in the card reader 200 for reading card information can be implemented to include an RF communication module.

The IC card may be an IC chip conforming to the EMV standard and a card having the application embedded therein. The EMV is an international standard for credit and debit transactions established jointly by card companies of Europay / MasterCard / Visa. It means the standard for the transaction used.

In the case of the IC card, the card reader 200 reads various kinds of information of the customer card through communication with the credit card 10, and if necessary information (payment amount, password, etc.) is inputted, Determines what kind of transaction is to be requested, and transmits it to the credit card (10).

The credit card 10 may review the request of the card reader 200 to determine whether to accept offline approval / offline rejection / referral / online and respond to the card reader 200. [

The card reader 200 performs offline approval / offline rejection / reply based on the response of the credit card 10, and transmits the transaction approval request message to the relay server 300 through the terminal 100 when the card reader 200 is online.

The relay server 300 transmits the transaction approval request telegram to the card issuer server 500 and the card issuer server 10 transmits the reply telegram including the approval / rejection to the relay server 300, May transmit the response message to the card reader 200 through the terminal 100 again.

The card reader 200 makes a final request to the credit card 10 in accordance with whether the received message is approved or rejected and the credit card 10 examines the request of the card reader 200 and finally responds to the approval / And the card reader 200 approves / rejects the transaction according to the response of the credit card 10.

3 is a block diagram illustrating a configuration of a terminal 100 according to an embodiment of the present invention.

Referring to FIG. 1, a terminal 100 includes a billing program 110 installed on a terminal, and a card reader 200 is connected to a connection port 135 including an earphone connection terminal 133 and a microphone connection terminal 132, Respectively.

The terminal 100 includes a connection port 135 including an antenna 101, a communication module 103, a key operation unit 105, an earphone connection terminal 133 and a microphone connection terminal 132, a touch pad 109, A display unit 111, a memory 113, and a control unit 115 in which a payment program 110 is installed.

The communication module 103 includes a modem for encoding and modulating the transmitted signal, demodulating and decoding the signal received through the antenna 101, and an RF front end for processing the RF signal.

The key operation unit 105 selectively includes a 10-key for inputting a telephone number depending on whether the touch pad 109 is provided or not. If the telephone number and the signature information for payment of a card are inputted through the touch pad 109, the key operation unit 105 may be configured with only a minimum function key for power on / off. Hereinafter, the key operation unit 105 and the touch pad 109 will be collectively referred to as a key input unit.

The control unit 115 may include a card settlement processing unit 115a, an interface unit 115b, a first encryption key generation unit 115c, and an encryption / decryption unit 115d. Here, the encrypting / decrypting unit 115d will be described as one module for convenience, but it may be constituted by one encrypting module including both the encrypting unit and the decrypting unit, and the encrypting unit and the decrypting unit may exist as separate modules .

The card settlement processing unit 115a can transmit the card information transmitted from the card reader 200 to the relay server 300 through the communication module 103 and can perform a service according to a typical credit card electronic settlement method.

At this time, the card settlement processing unit 115a may transmit the authentication information to the card issuer server 500 to secure the transaction security before transmitting the transaction approval request telegram and the digital signature information to the relay server 300. [ Here, the authentication information may include PIN (Personal Identification Number) information of a card held by the purchaser.

The card issuer server 500 receiving the PIN information from the terminal 100 receives the PIN corresponding to the pin information, confirms the authenticity, informs the terminal 100 of the availability of the card, and authenticates the card payment. Accordingly, it is necessary to input pin information such as a password at the time of payment of the card to determine whether to approve the card, thereby providing an effect of preventing the abuse of the payment due to theft of the card.

Herein, the PIN information may be authenticated by the card issuer server 500 or the relay server 300, or may be performed by a separate authentication server. The PIN information authentication procedure can be applied when an IC (Integrated Circuit) card such as a smart card is used, and pin information is encrypted and stored in the IC card.

The card settlement processing unit 115a receives the transaction approval result message transmitted from the card issuer server 500 via the relay server 300 and outputs the message through the display unit 111. [

When the terminal 100 includes the touch pad 109 as a key input unit, the signature of the purchaser is handwritten through the touch pad 109, and the card payment processing unit 115a transmits the signature of the inputted purchaser to the card As signature information. On the other hand, when the terminal 100 does not have the touch pad 109, signature input may be omitted when the buyer's card is paid.

The card settlement processing unit 115a can encrypt the signature approval information and the transaction approval request message including the settlement request information for secure credit card settlement and transfer the encrypted transaction information to the relay server 300. [

The credit card payment processing unit 115a stores the credit card payment details in the memory 113 and outputs the credit card payment details through the display unit 111 according to criteria such as settlement date, The information of the card settlement history can be transmitted to the buyer terminal as a message.

The control unit 115 is connected to a connection port (not shown) including other components such as an antenna 101, a wireless communication module 103, a key operation unit 105, an earphone connection terminal 133, and a microphone connection terminal 132 135, the touch pad 109, the display unit 111, and the memory 113. [

The interface unit 115b can transmit and receive data to and from the card reader 200 through the connection port 135 including the microphone connection terminal 132 and the earphone connection terminal 133. [

For this purpose, the interface unit 115b includes an analog-to-digital converter for converting an analog signal received through the microphone connection terminal 132 into a digital signal, and an encryption key to an analog signal, (Digital-to-Analog) converter for transmitting the digital image signal to the image processor 133.

On the other hand, the first encryption key generation unit 115c generates a first encryption key for encrypting the layout information of the randomly configured key input layer for inputting the password of the IC card according to an embodiment of the present invention. Here, the first encryption key may be a random number generated through a general random number generator or the like, but may be a public key paired with a private key generated using a public key algorithm. For example, the first encryption key generation unit 115c may generate a first encryption key (Public key) and a private key using a Rivest, Shamir and Adleman (RSA) public key algorithm. The RSA public key algorithm is an asymmetric key algorithm and can be applied to the arrangement information of the present invention and the second encryption key encryption in which the data capacity is relatively small because the security may be relatively high but the processing speed may be low.

The first encryption key may be transmitted to the card reader 200 through the interface unit 115b and the private key may be stored in the memory 113. [

The first encryption key generating unit 115c may generate the payment amount and the first encryption key and transmit the payment amount and the first encryption key through the interface unit 115b when the payment amount input by the card payment processing unit 115a exists. In this case, since different first encryption keys are generated at each settlement, security can be improved.

Then, the encryption / decryption unit 115d decrypts the encrypted information received from the card reader 200 with the private key corresponding to the first encryption key, acquires the layout information of the key input layer configured randomly for inputting the password , And transfers it to the card settlement processing unit 115b.

Accordingly, the card settlement processing unit 115b can display the key input layer for inputting the password through the display unit 111 based on the arrangement information of the key input layer configured at random for inputting the password. In this way, the arrangement information of the key input layer can not be known before the decryption is performed. If the decryption is performed using the private key corresponding to the first encryption key, the key input layer for inputting the pin information of the card held by the buyer And can be displayed on the screen.

4 is a block diagram illustrating a configuration of a card reader 200 according to an embodiment of the present invention.

4, the card reader 200 includes a connector 210, a power source 230, a central processing unit (CPU) 240, a reader 250, a memory 260, 270).

On the other hand, the central processing unit 240 includes a layer constitution section 241, a password detection section 242, a professional generation section 243 and an interface section 244, a second encryption key generation section 245 and an encryption / 246). Here, the encryption / decryption unit 246 of the card reader 200 will be described as one module for convenience, but it may be composed of one encryption module including both the encryption unit and the decryption unit, and the encryption unit and the decryption unit It may exist as a separate module.

The connector 210 is attached to the main body of the card reader 200 and transmits information necessary for credit card payment through the connection port 135 including the microphone connection terminal 132 of the terminal 100 or the earphone connection terminal 133 So that the terminal 100 can be exchanged.

Also, the power supply unit 230 supplies power to the respective components of the card reader 200 as a whole.

The layer configuration unit 241 randomly configures a key input layer in which a plurality of keys for inputting the password of the credit card 10 are arranged.

For example, in the case of an IC card, it is necessary to input a PIN (Personal Identification Number) for payment. The layer forming unit 241 randomly arranges keys used for a user to input a password in the terminal 100 can do.

The arrangement information for the keys randomly arranged in this way can be encrypted in the encryption / decryption unit 246. [ In particular, a first encryption key generated and stored in the terminal 100 may be used as an encryption key for encryption, as described above. The first encryption key may be an RSA public key, for example, and may be decrypted only with the RSA private key stored in the terminal 100. [

Accordingly, the interface unit 244 receives the first encryption key for encrypting the randomly arranged key input layer arrangement information, and transmits the arrangement information for the randomly configured key input layer, which is encrypted with the first encryption key, To the external terminal.

On the other hand, the second encryption key generation unit 245 generates a second encryption key for encrypting the position information corresponding to the IC card password input on the key input layer, which the terminal 100 decrypts and outputs the layout information do. The second encryption key may be a predetermined random number through the random number generator, but it may preferably be a symmetric key type encryption key. The generated second encryption key may be stored in the memory unit 260. For example, the symmetric key scheme may use the 3DES scheme, and the DES symmetric key algorithm may be relatively low in security but may be applied to location information encryption such as coordinate information according to the embodiment of the present invention, .

Then, the encryption / decryption unit 246 can encrypt the second encryption key with the first encryption key together with the arrangement information of the randomly configured key input layer. On the other hand, the second encryption key may be independently encrypted with the first encryption key.

The interface unit 244 transmits the second encryption key encrypted with the first encryption key to the terminal 100 and then transmits the position information on the IC card password input on the key input layer encrypted with the second encryption key From the external terminal.

The interface unit 244 transmits to the terminal 100 through the connector 210 the arrangement information on the randomly configured key input layer encrypted with the first encryption key and the second encryption key encrypted with the first encryption key as described above , The interface unit 115b of the terminal 100 receives the second encryption key encrypted with the first encryption key and the arrangement information on the randomly configured key input layer encrypted with the first encryption key through the connection port 135 .

Thereafter, the terminal 100 transmits the second encryption key encrypted with the received first encryption key and the layout information on the randomly configured key input layer encrypted with the first encryption key to the first encryption key through the display unit 111 The information on the input layer can be obtained and a screen for inputting the card password can be displayed. On the password input screen, numeral keys for inputting a password are randomly arranged.

When the user inputs the PIN using the password input screen of the terminal 100, the position information on the inputted password is encrypted with the second encryption key through the interface part 115b and the connection port 135 of the terminal, And transmitted to the reader 200.

According to the embodiment of the present invention, the password information transmitted to the card reader 200 may be location information of the inputted password, not the password itself, more specifically, the password input screen of the terminal 100 The coordinate information of the points that the user has contacted to input the password. Further, such coordinate information can be encrypted and protected with the second encryption key.

The encryption / decryption unit 246 of the card reader 200 can obtain the coordinate information by decrypting the position information on the inputted password, which is encrypted with the second encryption key received from the terminal 100. [

The password detecting unit 242 processes the password position information (for example, contact point coordinate information) obtained from the encryption / decryption unit 246 of the card reader 200, A password can be detected.

According to an embodiment of the present invention as described above, a key input layer for inputting a password may be randomly configured in the card reader 200, and only the arrangement information thereof may be encrypted and transmitted using the first encryption key received from the terminal 100 The terminal 100 may decrypt the encrypted data with the private key corresponding to the first encryption key and output the key input layer. Then, only the location information of the inputted password is encrypted with the second encryption key received from the card reader 200 It is possible to prevent leakage of the password in multiple layers, thereby improving the security of the payment information.

For example, even if a person hackes an interface, a connector, a communication port, or the like, security can be maintained because the private key corresponding to the first encryption key is not present or the symmetric key corresponding to the second encryption key is unknown. Only the location information of the key input layer and the location information of the password can be known, and the password itself is not leaked, so that the security can be formed in a multi-layered structure.

Meanwhile, the interface unit 244 can receive the payment amount information input from the terminal 100 through the connector 210.

The professional generating unit 243 generates a transaction approval request message including the card information obtained through the reader unit 250, the payment amount information received from the terminal 100, and the password detected through the password detecting unit 242 .

The reader unit 250 may include a magnetic strip reader (MSR) 251 for reading the information of the magnet card and an IC card reader 252 for reading the information of the IC card.

The transaction approval request message may be generated according to the EMV (Europay Mastercard Visa) standard.

The memory unit 260 may include a memory such as a flash ROM 262, an SRAM 262, and the like. The memory unit 260 stores the received first encryption key, the generated second encryption key, the card information of the credit card 10 processed by the payment control unit 241, payment information, Information and the like can be stored.

The display unit 270 may emit light using a red LED or a blue LED to notify the current state of the card reader 200, or may generate a specific beep sound such as "beep " .

The central processing unit 240 also controls the overall operations of the remaining components, namely, the connector 210, the power supply 230, the magnetic strip reader (MSR) 250, the memory 260, and the display 270 .

The power supply unit 230 may include a battery and a switching unit. The switching unit 232 may be a bipolar transistor, a MOS transistor, or other switching device. It is possible to selectively supply power to each constituent part of the apparatus.

When the card reader 200 and the terminal 100 are connected to each other, a detection signal of the terminal 100 is transmitted from the connector 210 to the switching unit. Accordingly, when the sensing signal is activated, the switching unit is turned on, and the power received from the battery is supplied to the respective components of the card reader 200. [ Here, activation of the sensing signal may mean that the sensing signal has a voltage level higher than a specific voltage.

On the other hand, in a state where the card reader 200 and the terminal 100 are separated from each other, a sensing signal of the terminal 100 from the connector 210 is not transmitted to the switching unit. Accordingly, when the detection signal is not activated, the switching unit is turned off, and the supply of power received from the battery is interrupted.

That is, in the standby state, the card reader 200 is not supplied with power from the power supply unit 230, and thus the card reader 200 maintains the turn-off state.

The connection port 135 including the microphone connection terminal 132 and the earphone connection terminal 133 of the terminal 100 maintains a constant voltage of 2V to transmit and receive an audio signal.

Accordingly, when the card reader 200 is inserted into the terminal 100, the constant voltage (2V) is transmitted to the connector 210 as a detection signal. The switching unit is turned on when the sensing signal is higher than the threshold voltage of the transistor by a predetermined voltage or higher, and the power of the battery is transmitted to each component.

Therefore, the card reader 200 according to the embodiment of the present invention provides an effect of reducing power consumption of the battery 231 unnecessary in the standby state.

FIG. 5 is a flowchart illustrating a payment information processing method according to an embodiment of the present invention. Referring to FIG. 5, a method of processing the payment information shown in FIG. 4 includes a configuration of a card reader 200 according to an embodiment of the present invention Will be described with reference to the block diagram shown in FIG.

Referring to FIG. 5, the layer configuration unit 241 of the card reader 200 randomly configures a key input layer in which a plurality of keys for inputting a password are arranged (Step S1).

In step S2, the interface unit 244 receives a first encryption key for encrypting the configuration information for the randomly configured key input layer through the connector 210 from the terminal 100. In step S2,

Here, the first encryption key may be a public key generated in the terminal 100, and a private key corresponding to the first encryption key may be stored in the terminal 100.

Thereafter, the second encryption key generating unit 245 generates a second encryption key for encrypting the position information on the password in the terminal 100 (step S3).

Here, the generated second encryption key may be a symmetric key, and the second encryption key to be transmitted may be copied and stored in the card reader 200 in advance.

Then, the encryption / decryption unit 246 of the card reader 200 encrypts the generated second encryption key and the layout information for the key input layer using the first encryption key (step S4), and the interface unit 244 The second encryption key encrypted with the first encryption key and the layout information for the key input layer are transmitted to the terminal 100 through the connector 210 in step S5.

The interface unit 244 receives positional information on the IC card password encrypted with the second encryption key from the terminal 100 via the connector 210 (step S6).

The terminal 100 decrypts the encrypted layout information about the key input layer using the private key corresponding to the first encryption key, outputs the randomly configured key input layer using the decrypted private key, Location information on the IC card password can be obtained. The terminal 100 may encrypt the location information of the IC card password with the second encryption key and transmit the encrypted location information to the interface unit 244 through the connector 210. [

Then, the encryption / decryption unit 246 of the card reader 200 decrypts the position information for the IC card password using the second encryption key stored in advance (step S7), and the password detection unit 242 decrypts the encryption / And the decryption unit 246 processes the decrypted location information to detect the password entered by the user at the terminal 100 (step S8).

The professional generating unit 243 generates a transaction approval request message including the detected password in step S9 and transmits the message to the terminal 100 via the interface unit 244 and the connector 210 ).

Meanwhile, the interface unit 244 can receive information on a payment amount input from the terminal 100 through the connector 210 from the terminal 100. [

In this case, the transaction approval request message generated by the message generator 243 may include the password detected by the password detector 242, the IC card information acquired by the reader 250, and the payment received from the terminal 100 May be generated according to the EMV standard to include the amount information.

Hereinafter, embodiments of the payment information processing method according to the present invention will be described in detail with reference to FIGS. 6 to 9. FIG.

6 is a timing diagram illustrating an operation of a card reader, a terminal, and relay servers for processing IC card payment information.

Referring to FIG. 6, the terminal 100 executes a payment program 100 for processing payment of a credit card (step S11a).

The card reader 200 is inserted into the insertion groove 134 located at the connection port 135 including the earphone connection terminal 133 and the microphone connection terminal 132 of the terminal 100 to sell goods and services. The connector 210 is connected (step S11b).

It is to be noted that the card reader 200 is connected to the terminal 100 after the payment program 110 has been executed. However, the payment program 110 may be executed after the card reader 200 is connected to the terminal 100 .

At this time, the terminal 100 can recognize the magnetic strip reader (MSR) 251 and the IC card reader 252 of the card reader 200 through the microphone connection terminal 132.

Thereafter, when the seller inserts or brings the IC card 10 into or out of the card reader 200, the IC card reader 252 of the card reader 200 reads the card information of the IC card 10 (S13 step).

The interface unit 244 transmits a message requesting information on an amount to be paid using the IC card 10 to the terminal 100 through the connector 210 in step S14, The first encryption key generating unit 115c of the terminal 100 encrypts the layout information for the key input layer to be randomly configured in the layer configuring unit 241 after receiving the payment amount from the user in step S15 And stores the generated private key in the memory 160 (step S16).

Then, the terminal 100 transmits the information on the payment amount and the first encryption key, which is a public key, to the card reader 200 through the connection port 135 (step S17).

The layer configuration unit 241 randomly configures a key input layer in which a plurality of keys for inputting a password are arranged and generates the arrangement information, and the encryption / decryption unit 246 of the card reader 200 And encrypts using the first encryption key (step S18).

The encryption / decryption unit 245 of the card reader 200 generates a second encryption key for decrypting the position information on the secret number input from the terminal 100 by the terminal 100 as a symmetric key , And encrypts it with the first encryption key (step S19).

Then, the interface unit 244 transmits the arrangement information for the randomly configured key input layer encrypted with the first encryption key and the second encryption key, which is the symmetric key encrypted with the first encryption key, to the terminal 100 (step S20) .

The terminal 100 decrypts the information encrypted with the first encryption key received from the card reader 200 using the private key to obtain the layout information for the randomly configured key input layer, A screen for inputting a password is displayed on the display unit 111, and a password is input from the user (step S21).

FIG. 7 shows an example of a configuration of a password input screen displayed on the terminal 100 using the key input layer. Numerical keys for inputting a password are randomly arranged on the screen.

The arrangement of the numeric keys as shown in FIG. 7 is determined by a key input layer randomly configured in the layer constituent section 241 of the card reader 200. For example, the layer constituent section 241 may include a random number generator The key input layer may be randomly configured using the random number generated through the random number generator and provided to the terminal 100. At this time, if the random placement information on the key input layer is encrypted and transmitted by the first encryption key generated by the terminal 100, the encryption / decryption unit 115d of the terminal 100 generates and outputs By decrypting using the stored private key, the key input layer can be displayed.

Then, the encryption / decryption unit 115d of the terminal 100 encrypts the contact point coordinate value of the input password with the second encryption key decrypted with the private key corresponding to the first encryption key received (step S22) .

As described above, the second encryption key may be an encryption key of a symmetric key scheme, and accordingly, the card reader 200 may also store a second encryption key symmetric thereto.

In step S23, the interface unit 115b transmits the contact point coordinate value of the inputted password encrypted with the second encryption key to the card reader 200 through the connection port 135 (step S23).

Referring to FIG. 8, the touch pad 109 of the terminal 100 displays coordinate values (x1, y1) of contact points P1 to P4 that the user touches on the password input screen as shown in FIG. ), (x2, y2), (x3, y3) and (x4, y4).

In this case, the coordinate values (x1, y1), (x2, y2), (x3, y3) and (x4, y4) of the contact points are input to the control unit 115, To the card reader 200 through the connection port 115b and the connection port 135. [ The coordinate values of the transmitted contact points can be decoded and obtained with the second encryption key generated in the encryption / decryption unit 246 of the card reader 200. [

Then, the password detecting unit 242 detects the password input by the user from the terminal 100 using the obtained coordinate values (step S24). Specifically, the password detecting unit 242 can confirm the password by combining the key input layer configured at random in step S18 and the password coordinate values received from the terminal 100. [

Then, in accordance with the EMV standard, the professional generating unit 243 acquires the IC card information acquired through the reader unit 250 in step S13, the payment amount information received from the terminal 100 in step S16, A transaction approval request message including the password detected in step S25 is generated (step S25).

The interface unit 244 transmits the transaction approval request telegram to the terminal 100 through the connector 210 in step S26 and the terminal 100 transmits the transaction approval request telegram via the communication module 103, And performs an approval request to the server 300 (step S27).

FIG. 9 is a timing diagram illustrating an operation of a card reader, a terminal, and relay servers for processing magnet card payment information.

The card reader 200 according to the embodiment of the present invention can selectively process the magnet card payment information or the IC card information according to the type of inserted or sliding card. In the case of magnet card payment, the PIN number may not be required, and the encryption and decryption process of the above-mentioned password input layer may be omitted.

Referring to FIG. 9, the terminal 100 executes a payment program 100 for processing payment of a credit card (S50).

The card reader 200 is inserted into the insertion groove 134 located at the connection port 135 including the earphone connection terminal 133 and the microphone connection terminal 132 of the terminal 100 to sell goods and services. The connector 210 is connected (step S51).

At this time, the terminal 100 can recognize the magnetic strip reader (MSR) 251 of the card reader 200 through the microphone connection terminal 132.

When the seller slides the magnetic card 10 through the card insertion slot 220 of the card reader 200 and moves the card reader 200 to read the card information of the marked card 10 ).

The interface unit 244 transmits the magnetic card information obtained in step S53 to the terminal 100 through the connector 210 (step S54).

After receiving the payment amount from the user in step S55, the terminal 100 confirms the transaction including the card information received from the card reader 200 in step S53 and the payment amount information input in step S55 And creates a request specification (step S56).

The terminal 100 performs an approval request to the relay server 300 through the communication module 103 using the created transaction approval request message (step S57).

The above-described payment information processing method according to the present invention may be stored in a computer-readable recording medium. The computer-readable recording medium may be a ROM, a RAM, a CD-ROM , A magnetic tape, a floppy disk, an optical data storage device, and the like, and may also be implemented in the form of a carrier wave (for example, transmission over the Internet).

The computer readable recording medium may be distributed over a networked computer system so that computer readable code can be stored and executed in a distributed manner. And, functional programs, codes and code segments for implementing the above method can be easily inferred by programmers of the technical field to which the present invention belongs.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, It will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the present invention.

Claims (16)

A connector connected to be able to communicate with an external terminal;
A reader unit for acquiring IC card (Integrated Circuit Card) information;
A layer configuration unit configured to randomly configure a key input layer in which a plurality of keys for inputting a password are arranged;
And a controller for receiving a first encryption key for encrypting layout information of the randomly configured key input layer through the connector and transmitting layout information on the randomly configured key input layer encrypted with the first encryption key to the external terminal An interface for receiving location information on an IC card password input on the key input layer from the external terminal; And
And a password detector for processing the received location information to detect a password input from the external terminal. The method according to claim 1,
Further comprising a second encryption key generating unit for generating a second encryption key for encrypting, by the external terminal, positional information on an IC card password inputted through the key input layer,
Wherein the interface unit transmits the second encryption key encrypted with the first encryption key and the arrangement information on the randomly configured key input layer encrypted with the first encryption key to the external terminal. 3. The method of claim 2,
Wherein the second encryption key is an encryption key of a symmetric key method different from the encryption method of the first encryption key. 3. The method of claim 2,
The interface unit
And receives from the external terminal location information on the IC card password input on the key input layer encrypted with the second encryption key. 5. The method of claim 4,
And a decryption unit for extracting, based on the second encryption key, position information on the IC card password input on the key input layer. The method according to claim 1,
Wherein the first encryption key is a public key encryption key generated in the external terminal, and the private key corresponding to the first encryption key is stored in the external terminal. 2. The method of claim 1,
Wherein the key input layer is coordinate information of points at which the user touches the screen for inputting the password on the screen of the external terminal displayed with the key input layer. 2. The apparatus of claim 1, wherein the interface
Further receiving settlement amount information from the external terminal,
And the reader acquires the IC card information based on the payment amount information and the detected password. 9. The method of claim 8,
Further comprising a professional generating unit for generating a transaction approval request message including the obtained IC card information, the detected password, and the received payment amount information according to an EMV (Europay Mastercard Visa) standard,
Wherein the generated transaction approval request message is transmitted to a relay server for payment of a card through the external terminal. The apparatus of claim 1, wherein the reader unit
A magnetic strip reader for acquiring magnetic card information,
The obtained magnetic card information is transmitted to the external terminal,
Wherein the transaction approval request message including the magnetic card information and the payment amount information is generated in the external terminal and then transmitted to the relay server for payment of the card. A connection port including at least one terminal connected to a card reader for acquiring IC card information;
A first encryption key generator for generating a first encryption key;
Wherein the card reader transmits the first encryption key to the card reader through the connection port, and the card reader transmits layout information on the randomly configured key input layer encrypted with the first encryption key, And transmits the location information on the IC card password input on the key input layer encrypted with the second encryption key to the card reader, and transmits a transaction approval request message including the detected password using the location information An interface unit for receiving the card from the card reader; And
And a communication module for transmitting the received transaction approval request message to a relay server for card settlement. 12. The method of claim 11,
A memory for storing a private key corresponding to the first encryption key; And
Further comprising: a decryption unit for decrypting the arrangement information for the key input layer encrypted with the first encryption key and the second encryption key encrypted using the first encryption key using the private key. 12. The method of claim 11,
Further comprising a display unit for displaying a screen for inputting a password by using a key input layer received from the card reader,
Wherein the location information includes coordinate information of points contacted by a user on the password input screen. A method for processing payment information in a card reader including a connector connected to be able to communicate with an external terminal and a reader for acquiring card information, the method comprising:
Randomly configuring a key input layer in which a plurality of keys for inputting a password are arranged;
Receiving a first encryption key for encrypting placement information for the key input layer;
Generating a second encryption key for encrypting location information on an IC card password input on the key input layer;
Encrypting layout information for the second encryption key and the key input layer using the first encryption key and transmitting the encryption information to the external terminal;
Receiving location information on an IC card password input on the key input layer encrypted with the second encryption key from the external terminal;
Processing the received location information to detect a password input from the external terminal; And
Generating a transaction approval request message including the detected password, and transmitting the transaction approval request message to the external terminal. 15. The method of claim 14,
Wherein the first encryption key is a public key generated by the RSA method in the external terminal, and the second encryption key is a DES symmetric key.
How to process payment information. 15. A recording medium on which a program for causing a computer to execute the method of any one of claims 14 and 15 is recorded.
KR1020140131078A 2014-09-30 2014-09-30 Card reader, terminal and method for processing payment information thereof KR101583156B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020140131078A KR101583156B1 (en) 2014-09-30 2014-09-30 Card reader, terminal and method for processing payment information thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020140131078A KR101583156B1 (en) 2014-09-30 2014-09-30 Card reader, terminal and method for processing payment information thereof

Publications (2)

Publication Number Publication Date
KR20140128912A KR20140128912A (en) 2014-11-06
KR101583156B1 true KR101583156B1 (en) 2016-01-08

Family

ID=52454658

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020140131078A KR101583156B1 (en) 2014-09-30 2014-09-30 Card reader, terminal and method for processing payment information thereof

Country Status (1)

Country Link
KR (1) KR101583156B1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101560720B1 (en) * 2015-03-24 2015-10-16 주식회사지니 Payment processing system using encrypted payment information and method for processing thereof
KR101691170B1 (en) * 2015-06-18 2016-12-30 한국정보통신주식회사 A portable terminal, a method for processing card information using it
KR101957885B1 (en) * 2017-05-25 2019-03-13 주식회사 코밴 Method of payment processing and security card reader device performing the same
KR101872261B1 (en) * 2017-08-30 2018-06-29 한국인증서비스 주식회사 Ic card information security transmission system and online payment method using the same
CN113450110A (en) * 2020-03-26 2021-09-28 苏州佳世达光电有限公司 Secure payment system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100725146B1 (en) 2005-12-08 2007-06-04 주식회사 케이티프리텔 System and method for settlement by using card recognition equipment
KR101282474B1 (en) 2011-11-30 2013-07-04 에스케이씨앤씨 주식회사 Payment system for supporting contactless payment with NFC card and payment method thereof

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100725146B1 (en) 2005-12-08 2007-06-04 주식회사 케이티프리텔 System and method for settlement by using card recognition equipment
KR101282474B1 (en) 2011-11-30 2013-07-04 에스케이씨앤씨 주식회사 Payment system for supporting contactless payment with NFC card and payment method thereof

Also Published As

Publication number Publication date
KR20140128912A (en) 2014-11-06

Similar Documents

Publication Publication Date Title
KR101492054B1 (en) Card reader, terminal and method for processing payment information thereof
JP7204705B2 (en) Validation of online access to secure device functions
US9129199B2 (en) Portable E-wallet and universal card
US9218557B2 (en) Portable e-wallet and universal card
US9177241B2 (en) Portable e-wallet and universal card
US8671055B2 (en) Portable E-wallet and universal card
WO2013112839A1 (en) Portable e-wallet and universal card
KR101143856B1 (en) Card reader, mobile terminal and payment method using the same
KR101583156B1 (en) Card reader, terminal and method for processing payment information thereof
CN105103174A (en) Systems, methods and devices for transacting
JP2016511864A (en) Authentication device and related method
JP2022501875A (en) Systems and methods for cryptographic authentication of non-contact cards
US20190095902A1 (en) System and method of processing payment transactions via mobile devices
KR101677803B1 (en) Card reader, terminal and method for processing payment information thereof
KR101743116B1 (en) A multi card reader module and an appratus using it
KR101695097B1 (en) Method for Providing Simple Payment based on One Time Password Card
KR101547937B1 (en) A portable terminal, a method for processing card information using it and a card reader
KR101691172B1 (en) A portable terminal, a method for processing information using it
KR101691170B1 (en) A portable terminal, a method for processing card information using it
KR101691171B1 (en) A portable terminal, a method for processing card information using it
KR200481097Y1 (en) A card reader appratus for a transaction and a portable terminal
KR101691173B1 (en) A portable terminal, a method for processing transaction information using it
KR20180040869A (en) Method for processing payment, potable terminal and payment system thereof
KR20170007601A (en) Complex financial terminal, Complex financial services system using Complex financial terminal and method thereof

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
FPAY Annual fee payment

Payment date: 20181206

Year of fee payment: 4

FPAY Annual fee payment

Payment date: 20191114

Year of fee payment: 5