KR101674812B1 - Method for Providing Payment based on One Time Password Card - Google Patents
Method for Providing Payment based on One Time Password Card Download PDFInfo
- Publication number
- KR101674812B1 KR101674812B1 KR1020150090873A KR20150090873A KR101674812B1 KR 101674812 B1 KR101674812 B1 KR 101674812B1 KR 1020150090873 A KR1020150090873 A KR 1020150090873A KR 20150090873 A KR20150090873 A KR 20150090873A KR 101674812 B1 KR101674812 B1 KR 101674812B1
- Authority
- KR
- South Korea
- Prior art keywords
- information
- otp
- chip
- card
- wireless terminal
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
- G06Q20/38215—Use of certificates or encrypted proofs of transaction rights
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/02—Banking, e.g. interest calculation or account maintenance
Abstract
The present invention relates to a method for making an account transfer using an oticid card, the method comprising the steps of: generating a One Time Password (OTP) for banking, the method comprising the steps of: And the authentication rule of the authentication key generated by the OTP card is mapped and stored. When the payment request using the account transfer is confirmed, the program of the wireless terminal generates an OTP for banking through the chip of the OTP card And provides the OTP card to the wireless terminal in a chip of the OTP card. In the chip of the OTP card, the OTP for banking is generated through the designated seed provided in the chip and the dynamic seed, And generates an authentication key to be authenticated through the operation server, and transmits the unique information of the OTP card and the generated When the authentication information including the authentication key is encrypted to be decrypted through the bank server and the response information including the encrypted OTP for banking and the encrypted authentication information is provided to the wireless terminal through the contactless interface, Wherein the program receives response information including the encrypted banking OTP and the encrypted authentication information from the chip of the OTP card through the contactless interface, and the program of the wireless terminal receives the withdrawal account information and the account password An OTP for banking encrypted in a chip of the OTP card so as to be dynamically generated in a chip of an OTP card that is contactlessly interfaced to the wireless terminal and decrypted through a designated bank server, The authentication key generated from the chip of the card is decrypted through the operation server The operating server receives the withdrawal account information, the account password, the encrypted OTP for banking, and the encrypted authentication information from the program of the wireless terminal when the encrypted authentication information is transmitted in the chip, Decrypts the encrypted authentication information and restores the unique information of the OTP card and the authentication key generated in the chip of the OTP card, and the operation server generates the authentication information in the chip of the OTP card using the authentication rule mapped to the unique information Wherein the operation server authenticates the validity of one authentication key, and when the validity of the authentication key is verified, the operating server transmits the withdrawal account information and the account password input through the program of the mobile terminal, A corresponding bank account information, an encrypted OTP for banking which is generated in the chip of the OTP card and decrypted through a designated bank server Wherein the encrypted authentication information is not decrypted through the program of the wireless terminal, and the encrypted OTP for the banking is transmitted to the designated bank server through the bank transfer server, It is not decoded through the program or operating server of the wireless terminal.
Description
The present invention provides a method for executing an OTP card, which is executed through an operation server communicating with a program installed in a wireless terminal of a user, wherein the operating server generates unique information of an OTP card for generating an OTP (One Time Password) for banking, The program of the wireless terminal determines a dynamic seed for generating an OTP for banking through a chip of the OTP card and transmits the non-contact to the wireless terminal when the payment request is confirmed using the account transfer, And an OTP card for banking is generated through the dynamic seed and a designated seed provided in the chip on the chip of the OTP card and is encrypted to be decrypted through a designated bank server, Generates authentication key to be authenticated, and transmits authentication information including the unique information of the OTP card and the generated authentication key to the bank server And providing response information including the encrypted OTP for banking and the encrypted authentication information to the wireless terminal through the noncontact interface, the program of the wireless terminal is transmitted from the chip of the OTP card through the contactless interface Receiving the response information including the encrypted OTP for banking and the encrypted authentication information, and transmitting the withdrawal account information and the account password input from the user to the program of the wireless terminal and a chip of the OTP card contact- An OTP for banking encrypted in a chip of the OTP card to be dynamically generated and decrypted through a designated bank server, unique information provided in a chip of the OTP card, and an authentication key generated in a chip of the OTP card, And transmits the encrypted authentication information in the chip of the OTP card to be decrypted through the OTP card, Receives the withdrawal account information, the account password, the encrypted OTP for banking, and the encrypted authentication information from the program of the wireless terminal, and the operation server decrypts the encrypted authentication information and stores the unique information of the OTP card The operation server authenticates the validity of the authentication key generated in the chip of the OTP card by using the authentication rule mapped to the unique information, and the validity of the authentication key Upon authentication, the operation server generates deposit account information, account password, deposit account information corresponding to the settlement request, input through the program of the wireless terminal based on the authentication result of the authentication key, And the OTP for encrypted banking to be decrypted through the designated bank server, And the encrypted authentication information is not decrypted through the program of the wireless terminal and the encrypted OTP for banking is not decrypted through the program or the operation server of the wireless terminal The present invention relates to a payment method of a direct debit payment using an oticid card.
In order to settle the settlement based on the conventional money transfer service, it is necessary to input the designated account information of the store by using the Internet banking, transfer the settlement amount to the account, or transfer the designated account information of the store through mobile banking using the banking app installed in the user's wireless terminal A complicated procedure for inputting a key and transferring a settlement amount to a bank, and complicated procedures such as key input of a random number of a security card or key input of an OTP generated through an OTP generator in the process of using the Internet banking / mobile banking There was a problem that the procedure had to be performed.
In order to partially solve the complexity of such account transfer, a service has been proposed, such as transferring money by using account information in the form of a telephone number, or transferring money by mapping an e-mail address or a mobile phone number with account information, Since the proposed method has security risks, the operator could provide such services after depositing certain accident deposits with the bank in preparation for the financial crisis. In this way, Day or 100,000 won a day if the deposit is enough).
In order to solve the above problems, an object of the present invention is to provide a method for executing an OTP (One Time Password) for banking, which is executed through an operation server communicating with a program installed in a user's wireless terminal, A first step of mapping the unique information of the OTP card and the authentication rule of the authentication key generated by the OTP card and storing the mapping information; and a step of, when the payment request is confirmed using the account transfer, A second step of determining a dynamic seed for generating the OTP for a banking through a dynamic seed and a designated seed provided in the chip in a chip of the OTP card, Generating an authentication key to be authenticated through the operation server, generating an authentication key to be authenticated through the operation server, When the authentication information including the generated authentication key is encrypted to be decrypted through the bank server and the response information including the encrypted OTP for banking and the encrypted authentication information is provided to the wireless terminal through the contactless interface, A third step of the program of the terminal receiving response information including the encrypted banking OTP and the encrypted authentication information from the chip of the OTP card through the contactless interface; An OTP for banking encrypted in the chip of the OTP card so as to be dynamically generated from a chip of an OTP card dynamically generated in a contactless interface with the wireless terminal and decrypted through a designated bank server, The unique information and the authentication key generated from the chip of the OTP card are decrypted through the operation server When the encrypted authentication information is transmitted in the chip of the OTP card, the operating server receives the payment account information, the account password, the encrypted OTP for banking, and the encrypted authentication information from the program of the wireless terminal A fourth step of decrypting the encrypted authentication information, and a fifth step of decrypting the encrypted authentication information and restoring the unique information of the OTP card and the authentication key generated in the chip of the OTP card, A step of authenticating the validity of the authentication key generated in the chip of the OTP card using the rule, and a step of, when validating the authentication key, the operation server notifying the program of the wireless terminal based on the authentication result of the authentication key Withdrawal account information and account password input through the OTP card, deposit account information corresponding to the settlement request, And a seventh step of providing the account transfer request information including the encrypted OTP for banking to be decrypted through the bank server to the designated bank server to request settlement based on the account transfer, And the encrypted banking OTP is not decrypted through the program of the terminal but is not decrypted through the program or the operation server of the wireless terminal.
A method for making an account transfer using an oticid card according to the present invention is a method executed by an operation server communicating with a program provided in a user's wireless terminal, the operation server generating an OTP (One Time Password) for banking A first step of mapping the unique information of the OTP card and the authentication rule of the authentication key generated by the OTP card and storing the mapping information; and a step of, when the payment request is confirmed using the account transfer, A second step of determining a dynamic seed for generating the OTP for a banking through a dynamic seed and a designated seed provided in the chip in a chip of the OTP card, Generates an authentication key to be authenticated through the operation server, generates unique information of the OTP card, The method comprising: encrypting authentication information including the generated authentication key to be decrypted through the bank server and providing response information including the encrypted OTP for banking and encrypted authentication information to the wireless terminal through the contactless interface; A third step of the program of the wireless terminal receiving response information including the encrypted OTP for banking and the encrypted authentication information from the chip of the OTP card through the contactless interface; An OTP for banking encrypted in the chip of the OTP card so as to be dynamically generated from a chip of an OTP card dynamically generated in a contactless interface with the wireless terminal and decrypted through a designated bank server, And the authentication key generated in the chip of the OTP card is decrypted through the operation server The operating server receives the withdrawal account information, the account password, the encrypted OTP for banking, and the encrypted authentication information from the program of the wireless terminal when the encrypted authentication information is transmitted in the chip of the OTP card A fourth step and a fifth step of the operating server decrypting the encrypted authentication information and restoring the unique information of the OTP card and the authentication key generated in the chip of the OTP card; A sixth step of authenticating the validity of an authentication key generated in the chip of the OTP card using an authentication rule; and a sixth step of authenticating the validity of the authentication key, The deposit account information, the account password, the deposit account information corresponding to the settlement request, the payment account information generated in the chip of the OTP card And a seventh step of providing the account transfer request information including the encrypted OTP for banking to be decrypted through the bank server to the designated bank server to request settlement based on the account transfer, The encrypted banking OTP is not decrypted through the program of the wireless terminal and is not decrypted through the program or the operation server of the wireless terminal.
delete
According to another aspect of the present invention, there is provided a method for transferring money using an oticid card, wherein the operating server further includes a step of mapping information on a vendor of a vendor to be requested for payment and information on a transfer account of the vendor, The operational server may further include checking the deposit account information mapped with the business information corresponding to the settlement request.
According to another aspect of the present invention, there is provided a method of payment transfer using an oticid card, the operating server including: receiving payment request information including payment information of a user and a wireless terminal information of a user from an affiliate server; The server may further include providing the payment history information to a program of a wireless terminal corresponding to the wireless terminal information, wherein the payment history information may include a payment amount for payment request, order information, and business information .
delete
delete
delete
delete
According to another aspect of the present invention, there is provided a method of payment transfer using an OTP card, the method comprising the steps of: providing, by a program of the wireless terminal, withdrawal account information and an account password input from a user to a chip of the OTP card; The step of encrypting the withdrawal account information and the account password so as to be decrypted through the bank server and the step of providing the response information including the encrypted withdrawal account information and the account password from the chip of the OTP card to the non- And further comprising:
delete
delete
delete
delete
According to the present invention, in the method for payment by wire transfer using the oticid card, the program of the wireless terminal determines an argument value for generating an authentication key in the chip of the OTP card, and transmits the OTP card chip to the wireless terminal And generating an authentication key to be authenticated through an operation server based on the factor value in a chip of the OTP card.
delete
According to another aspect of the present invention, there is provided a method of payment transfer using an oticid card, the method including the step of generating an authentication key to be authenticated through the operation server using a factor value designated by a chip of an OTP card that is contact- .
delete
delete
delete
delete
delete
According to the present invention, the authentication result of the authentication key may be given a status equivalent to the account transfer request through the banking app corresponding to the bank server in response to the account transfer request through the program of the wireless terminal that is in contactless contact with the OTP card have.
According to another aspect of the present invention, there is provided a method of payment transfer using an oticid card, the method comprising: receiving, from the bank server, the account transfer result information for the account transfer request information; And providing the program of the wireless terminal as a program.
According to the present invention, the OTP card for generating the OTP for banking is contactlessly interfaced to the user's wireless terminal, so that the OTP for banking is not input, or the OTP for banking is input without using the banking app of the bank, There is an advantage in providing payment based on account transfer by giving the same status as using an app.
1 is a diagram illustrating a configuration of an account transfer based payment system using an OTP card according to an embodiment of the present invention.
2 is a diagram showing a configuration of an OTP card according to an embodiment of the present invention.
3 is a diagram showing a functional configuration of a wireless terminal and a program according to an embodiment of the present invention.
4 is a diagram illustrating a payment request process using an OTP card according to an embodiment of the present invention.
5 is a diagram illustrating an OTP card and a wireless terminal interworking process for OTC-based payment using an OTP card according to an embodiment of the present invention.
6 is a diagram illustrating a settlement process based on an account transfer using an OTP card according to an embodiment of the present invention.
The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention.
In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.
As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.
1 is a diagram illustrating a configuration of an account transfer based payment system using an
More specifically, FIG. 1 illustrates an example in which an
The system of the present invention generates an OTP for banking for account transfer, generates a predetermined authentication key for authenticating the validity of the banking OTP and generates unique identification information for identifying itself, An OTP card (200) having authentication information including an authentication key, the OTP card (200) having a chip (205) for encrypting the banking OTP and authentication information with different encryption rules different from each other, and an OTP The
The
According to the embodiment of the present invention, the OTP generated through the
The chip 205 of the
According to the method of the present invention, the chip 205 of the
The wireless terminal 300 is generated through the chip 205 of the
The operation server 100 is provided between the wireless terminal 300 and the bank server 160 to authenticate the validity of the
The affiliate server 150 is a general term of a server provided in an affiliate company that requests settlement based on an account transfer using the
The settlement request terminal 145 is a collective term of a terminal selecting a settlement based payment using the
Referring to FIG. 1, the operation server 100 authenticates the validity of the unique information of the
The
According to an embodiment of the present invention, the information storage unit 105 registers the company information of the affiliated company and the deposit account information of the affiliated company from one or more affiliated companies, maps the company information to the deposit account information, And can be stored in a storage medium. If the payment account information of the affiliated company is provided at the time of the payment request of the affiliate server 150, the deposit account information may not be registered and stored in advance. According to an embodiment of the present invention, the deposit account information may include account information of a relay account (for example, an escrow account) for transferring funds to the account of the affiliate company, and thus the present invention is not limited thereto.
1, the operation server 100 receives from the affiliate server 150 information of the user's wireless terminal 300 to be in non-contact with the user's
When the settlement request terminal 145 selects settlement based on the account transfer based on the user's
The information providing unit 115 performs mapping management (or referencing) of the user's wireless terminal 300 information with the app identification value for identifying the program 320 provided in the user's wireless terminal 300, It is determined whether the program 320 is loaded on the user's wireless terminal 300 based on the user's wireless terminal 300 information confirmed through the payment request confirmation unit 110. [ If the program 320 is not installed in the user's wireless terminal 300, the information providing unit 115 performs a procedure for mounting the program 320 in the user's wireless terminal 300 can do. Meanwhile, when the program 320 is installed in the user's wireless terminal 300, the information providing unit 115 transmits the payment history information (or payment history information) to the program 320 of the wireless terminal 300 Information to be exposed to the user). Preferably, the information providing unit 115 may perform a push notification procedure to provide the payment history information to the program 320 of the wireless terminal 300.
According to an embodiment of the present invention, the information providing unit 115 generates a random number for generating an OTP for banking on the chip 205 of the
According to the embodiment of the present invention, the information providing unit 115 generates an argument value for generating an authentication key in the chip 205 of the
The program 320 of the wireless terminal 300 receives the payment history information from the operation server 100 and outputs the payment history information to the screen of the wireless terminal 300. The program 320 of the wireless terminal 300 outputs an interface screen for receiving the withdrawal account information and the account password of the user and receives the withdrawal account information and the account password of the user through the interface screen. The program 320 of the wireless terminal 300 outputs a screen for guiding the user's
According to the first card interlocking embodiment of the present invention, the program 320 of the wireless terminal 300 includes a dynamic seed for generating an OTP for banking through the chip 205 of the
According to the second card interlocking embodiment of the present invention, the program 320 of the wireless terminal 300 determines an argument value for generating an authentication key in the chip 205 of the
According to the third card interlocking embodiment of the present invention, the authentication key may be generated through a factor value provided in the chip 205 of the
According to the fourth card interlocking embodiment of the present invention, the program 320 of the wireless terminal 300 provides the withdrawal account information input from the user and the account password to the chip 205 of the
According to the embodiment of the present invention, the chip 205 of the
The program 320 of the wireless terminal 300 transmits the account transfer information including the response information to the wireless terminal 300 by providing the response information designated by the chip 205 of the
According to the embodiment of the first account transfer information configuration of the present invention, the program 320 of the wireless terminal 300 displays the withdrawal account information and the account password input from the user, and the OTP card (OTP) for banking which is dynamically generated in the chip 205 of the
The program 320 of the wireless terminal 300 may be transferred to the bank server designated in the chip 205 of the
Referring to FIG. 1, the operation server 100 is configured to transmit withdrawal account information and account password input from a user through a program 320 provided in a user's wireless terminal 300, The OTP for banking encrypted in the chip 205 of the OTP card 200 so as to be decrypted through the designated bank server 160 dynamically generated in the chip 205 of the interface OTP card 200, The unique information of the OTP card 200 and the authentication key generated by the chip 205 of the OTP card 200 are encrypted in the chip 205 of the OTP card 200 so as to be decryptable through the operation server 100 An authentication information restoration unit 120 for decrypting the authentication information and restoring the unique information of the OTP card 200 and the authentication key generated by the chip 205 of the OTP card 200, And an authentication rule mapped to the inherent information, the chip (20) of the OTP card (200) A validity authentication unit 130 for authenticating the validity of the authentication key generated by the authentication key generation unit 5 in the validity of the authentication key, A transaction information constructing unit 135 configuring the account transfer request information including the inputted withdrawal account information and the account password, the deposit account information corresponding to the settlement request, and the OTP for banking generated and encrypted in the OTP card 200 ) And the account transfer request information to the designated bank server 160 to confirm the account transfer result information or the account transfer result information and transmit the account transfer result information to the program 320 of the wireless terminal 300 and the affiliate server 150 And a transaction procedure unit 140 for performing a procedure of providing the transaction procedure unit 140 to the user.
In the program 320 of the wireless terminal 300, the withdrawal account information and the account password input from the user according to the first or second account transfer information configuration example are stored in the chip 205 of the
The operation server 100 transmits the encrypted OTP for banking (including the withdrawal account information encrypted in the chip 205 of the
The restoring unit decrypts the encrypted authentication information in the chip 205 of the
When the unique information of the
If the validity of the
The transaction processing unit 140 transmits the bank account information to the bank server 160 corresponding to the withdrawal account information (or the bank server 160 that provides the account transfer transaction using the OTP for banking generated through the OTP card 200) And provides the account transfer request information configured through the transaction information construction unit 135 to the confirmed bank server 160 so that the account transfer request based on the account transfer request information through the bank server 160 (For example, the amount calculated in the deposit account by subtracting a specified amount from the withdrawal account (for example, the account transfer amount or the account transfer amount plus a predetermined fee) (for example, The amount transferred, or the amount transferred from the withdrawal account to the account transfer amount).
The bank server 160 performs the account transfer procedure using the account transfer request information, and provides the account transfer result information corresponding to the account transfer request information to the operating server 100. The transaction procedure unit 140 receives the account transfer result information from the bank server 160 and provides the account transfer result information to the program 320 of the wireless terminal 300 and the affiliate server 150 .
2 is a diagram illustrating the configuration of an
2 illustrates an OTP generation function for generating an OTP for banking and decrypting the OTP card for decryption through a designated bank server 160, an OTP generation function for generating an authentication key for validity authentication of the
2, the
The control unit 210 is a general term for a configuration for executing / controlling various operations of the
The memory 225 is a generic name of a nonvolatile memory provided in the
The memory 225 stores unique information of the
The memory 225 stores a designated seed for dynamically generating an OTP for banking. The designated seed may be recorded in the process of issuing (or issuing) the
The memory 225 may store a bank encryption key for decryptively encrypting the dynamically generated OTP for banking through the designated bank server 160. Preferably, the bank cryptographic key may be recorded in the issuing (or issuing) of the
The memory 225 may store an argument value for generating an authentication key generated for validity authentication of the
The memory 225 is a memory for encrypting the authentication information including the authentication key generated for the validity authentication of the
The communication unit 215 is a collective term for a unit for performing proximity wireless communication using a radio frequency signal as a communication medium at a proximity distance (for example, about 10 cm or less) in a noncontact interface with the wireless terminal 300. Preferably, And can process NFC communication with the wireless terminal 300.
2, the chip 205 of the
The program 320 of the wireless terminal 300 may transmit the information necessary for generating the OTP for banking (for example, a command for generating an OTP for banking and / or a dynamic And the reception processing unit 230 receives information necessary for generating an OTP for banking from the program 320 of the wireless terminal 300 that has been contactlessly interfaced. The reception processing unit 230 may receive the information necessary for generating the OTP for banking from the program 320 of the wireless terminal 300 according to a specified order or may receive information necessary for generating the OTP for banking, Together with information necessary for generating the authentication information (or authentication key) or the withdrawal account information and the account password input from the user.
The seed confirmation unit 235 includes a dynamic seed that is included in the information received through the reception processing unit 230 and the designated seed stored in the memory 225 (or a dynamic seed dynamically determined in the chip 205) The OTP generation unit 240 substitutes the identified seed value into a designated code generation algorithm to dynamically generate an OTP for banking for transferring money through the designated bank server 160. [
The OTP encryption unit 245 confirms a bank encryption key for encrypting the OTP for banking (or generates a bank encryption key according to a designated procedure) from the memory 225, And encrypts the OTP for banking so as to be decryptable only through the designated bank server 160.
The transmission processing unit 280 configures response information including the encrypted banking OTP through the OTP encryption unit 245 and transmits the response information to the program 320 of the wireless terminal 300 through the communication unit 215 And transmits the response information. Preferably, the transmission processing unit 280 transmits the response information including the decrypted encrypted OTP for banking through the designated bank server 160 according to the designated order, or transmits the response information including the encrypted operation specified with the OTP for banking It is possible to collectively transmit the authentication information decryptable through the server 100 or the response information including the withdrawal account information decryptably decrypted through the designated bank server 160 and the account password.
Referring to FIG. 2, a chip 205 of the
The program 320 of the wireless terminal 300 transmits information necessary to generate authentication information (or an authentication key) for validity authentication of the
The factor value confirmation unit 250 identifies at least one factor value among factor values stored in the memory 225 and / or factor values included in the information received through the reception processing unit 230, The generation unit 255 generates an authentication key for validity authentication of the
The authentication information encryption unit 260 identifies the unique information of the
The transmission processing unit 280 composes response information including the encrypted authentication information through the authentication information encryption unit 260 and transmits the response information to the program 320 of the wireless terminal 300 through the communication unit 215 And transmits the response information. Preferably, the transmission processing unit 280 transmits response information including decrypted encrypted authentication information through the designated operation server 100 according to a specified order, or transmits the response information including the encrypted authentication information to the designated bank server The OTP for banking encrypted to be decrypted through the bank server 160 and the response information including the account password and the account password encrypted so as to be decryptable through the bank server 160. [
2, the chip 205 of the
The program 320 of the wireless terminal 300 provides information including the withdrawal account information and the account password input by the user to the chip 205 of the contactless
The transaction information verifying unit 270 confirms the withdrawal account information and the account password inputted from the user among the information received through the reception processing unit 230 and encrypts the withdrawal account information and the account password from the memory 225 (Or generates a cryptographic key for a bank in accordance with a specified procedure), encrypts the withdrawal account information and the account password so that it can be decrypted only through the bank server 160 designated through the cryptographic key for the bank do.
The transmission processing unit 280 composes response information including the withdrawal account information and the account password encrypted through the transaction information encryption unit 275 and transmits the program of the wireless terminal 300 through the communication unit 215 320). ≪ / RTI > Preferably, the transmission processing unit 280 transmits response information including decrypted withdrawal account information and an account password through the designated bank server 160 in a designated order, or transmits the decrypted withdrawal account information and / The OTP for banking encrypted so as to be decryptable through the bank server 160 designated together with the account password, or the response information including the authentication information encrypted for decryption through the designated operation server 100 can be collectively transmitted.
FIG. 3 is a diagram illustrating a functional configuration of a wireless terminal 300 and a program 320 according to an embodiment of the present invention.
More specifically, FIG. 3 illustrates an OTP for banking encrypted to be decryptable through a bank server 160 created in a chip 205 of a contactless-interface-connected
3, the wireless terminal 300 includes a control unit 302, a memory unit 318, a screen output unit 304, a user input unit 306, a sound processing unit 308, a wireless network communication unit 314, A near field network communication unit 312, an NFC module 310, a USIM reader unit 316, and a USIM, and has a battery for power supply.
The control unit 302 is a general term for controlling the operation of the wireless terminal 300. The control unit 302 includes at least one processor and an execution memory, BUS). According to the present invention, the control unit 302 loads at least one program code included in the wireless terminal 300 into the execution memory through the processor, and outputs the result through at least one configuration To control the operation of the wireless terminal 300. [ Hereinafter, the functional configuration of the program 320 of the present invention will be described in the control unit 302 for convenience.
The memory unit 318 is a general term of the nonvolatile memory included in the wireless terminal 300 and includes at least one program code executed through the control unit 302 and at least one data set used by the program code And stores it. The memory unit 318 basically includes a system program code and a system data set corresponding to the operating system of the wireless terminal 300, a communication program code and a communication data set for processing a wireless communication connection of the wireless terminal 300, The program code and the data set corresponding to the program 320 of the present invention are also stored in the memory unit 318. [
The screen output unit 304 includes a screen output unit (e.g., an LCD (Liquid Crystal Display) and the like) and a driving module for driving the screen output unit 304. The screen output unit 304 is connected to the control unit 302, And outputs an operation result corresponding to the output to the screen output device.
The user input unit 306 includes at least one user input device (e.g., a button, a keypad, a touch pad, a touch screen coupled to the screen output unit 304), and a drive module for driving the touch screen. And inputs a command for instructing various operations of the control unit 302 or data necessary for the operation of the control unit 302. [
The sound processing unit 308 includes a speaker and a microphone and a driving module for driving the speaker and microphone. The sound processing unit 308 decodes a calculation result corresponding to a sound output from among the various calculation results of the control unit 302 in cooperation with the control unit 302, And outputs the sound signal through the speaker or the sound signal input through the microphone to the controller 302.
The wireless network communication unit 314 collectively refers to a communication unit that connects the wireless terminal 300 to a wireless communication network via a base station. The wireless network communication unit 314 includes an antenna, an RF module, a baseband module, And transmits the calculation result corresponding to the wireless communication among the various calculation results of the controller 302 through the wireless communication network or receives data through the wireless communication network To the control unit 302, and performs the connection, registration, communication, and handoff procedures of the wireless communication. Preferably, the wireless network communication unit 314 includes a mobile communication structure that performs at least one of connection to a mobile communication network, location registration, call processing, call connection, data communication, and handoff according to the CDMA / WCDMA / LTE standard.
The short-range network communication unit 312 is a collective term for a communication unit that connects a communication session using a radio frequency signal within a predetermined distance (for example, 10 m) as a communication medium and connects the wireless terminal 300 to a communication network based on the communication session , The wireless terminal 300 may be connected to the communication network through at least one of Wi-Fi communication, Bluetooth communication, public wireless communication, and UWB.
The NFC module 310 may be a component of a wireless communication system that processes at least one of a two-way proximity wireless communication, a full-duplex proximity wireless communication, and a half-duplex proximity wireless communication using a radio frequency signal as a communication medium at a close distance (e.g., As a general term, it is possible to process the proximity wireless communication according to the NFC (Near Field Communication) standard of the 13.56 Mz frequency band.
The USIM reader unit 316 is a generic term of a configuration for exchanging at least one data set with a universal subscriber identity module that is mounted or detached from the mobile station 300 based on the ISO / IEC 7816 standard , And the data set is exchanged in a half duplex communication manner through an APDU (Application Protocol Data Unit). The USIM is a SIM type card having an IC chip 205 according to the ISO / IEC 7816 standard, and performs a procedure for managing and authenticating a communication network connection through the wireless network communication unit 314.
The program 320 of the present invention is downloaded from an application providing server (for example, an Apple App Store or the like), installed in the wireless terminal 300 according to a designated procedure, .
3, the program 320 of the wireless terminal 300 includes a payment history receiving unit 325 for receiving payment history information for account transfer based payment from the designated operating server 100, A settlement processing output unit 330 for outputting history information and displaying an interface screen for receiving the user's withdrawal account information and account password, an interface screen for receiving the withdrawal account information and the account password of the user, And a transaction information input unit 335 for inputting the withdrawal account information and the account password of the user through the screen.
The operating server 100 provides payment history information for settlement based on the account transfer requested from the affiliate server 150 affiliated with the program 320 of the wireless terminal 300 and the payment history receiving unit 325 Based payment settlement information from the operation server 100 and the payment processing output unit 330 outputs the payment history information in cooperation with the screen output unit 304. [
According to the method of the present invention, the payment processing output unit 330 outputs the payment history information (or in accordance with the designated order) and simultaneously transmits the withdrawal account information and the account password of the user through the user input unit 306 And displays an interface screen for input and reception.
The transaction information input unit 335 receives the withdrawal account information of the user and the account password through the user input unit 306 based on the interface screen displayed through the payment processing output unit 330.
According to the embodiment of the present invention, the payment processing output unit 330 may output a screen for guiding the user's
Referring to FIG. 3, the program 320 of the wireless terminal 300 includes a card interlock verification unit 340 for checking whether the
The card interlocking confirmation unit 340 confirms whether or not the contactless interface with the
Contact interface with the
According to the first card interlocking embodiment of the present invention, the card interlocking procedure unit 345 may include a dynamic seed (for example, a time value and / or a time value) for generating an OTP for banking through the chip 205 of the OTP card 200 A random number value determined by the wireless terminal 300 and / or a random value determined by the server side (e.g., the operation server 100 or the bank server 160) To the chip 205 of the
According to the second card interlocking embodiment of the present invention, the card interlocking procedure unit 345 determines an argument value for generating an authentication key in the chip 205 of the
According to the third card interlocking embodiment of the present invention, the authentication key may be generated through a factor value provided in the chip 205 of the
According to the fourth card interlocking embodiment of the present invention, the card interlocking procedure unit 345 can provide the withdrawal account information input from the user and the account password to the chip 205 of the
According to the embodiment of the present invention, the chip 205 of the
The transaction request processing unit 350 forms the account transfer information including the response information and transmits the information to the operation server 100. [ The transaction request processing unit 350 encrypts the response information (or the account transfer information) according to a security protocol agreed with the operation server 100 and transmits the response information to the operation server 100, 100 can receive and decode the response information (or account transfer information).
According to the embodiment of the first account transfer information configuration of the present invention, the transaction request processing unit 350 receives the withdrawal account information and the account password input from the user and the password of the
According to the embodiment of the second account transfer information configuration of the present invention, the transaction request processing unit 350 transmits the transaction information to the transaction server 350 via the bank server 160 specified in the chip 205 of the
The operation server 100 requests the bank transfer server 160 to transfer the account transfer result information corresponding to the account transfer information to the bank server 160 based on the account transfer information, The processing unit 355 receives the account transfer result information corresponding to the account transfer information from the operation server 100 and outputs the account transfer result information in cooperation with the screen output unit 304. [
4 is a diagram illustrating a payment request process using the
In more detail, FIG. 4 illustrates a case where a settlement request terminal 145 selects a settlement-based payment using a user's
4, a settlement request terminal 145 selects a settlement-based settlement using a user's OTP card 200 (400), transfers the account transfer using the
The operation server 100 receives the payment request information including the information of the user's wireless terminal 300 and the payment history information from the affiliate server 150 and stores the payment request information for a designated valid period of time 425, The payment history information is received and output to the user's wireless terminal 300 corresponding to the terminal 300 information and is checked to see if the specified program 320 is loaded in conjunction with the user's
FIG. 5 is a diagram illustrating a process of interworking between an
5 shows an OTP for banking dynamically generated from a chip 205 of the
5, the operation server 100 provides the payment history information received from the affiliate server 150 to the program 320 of the wireless terminal 300 corresponding to the user's wireless terminal 300 information (500 ). The program 320 of the wireless terminal 300 receives the payment history information from the operation server 100 (505), and simultaneously outputs the received payment history information (or in accordance with the designated order) And displays the interface screen for receiving the information and the account password (510), and receives the withdrawal account information and the account password from the user based on the interface screen (515).
If the withdrawal account information and the account password of the user are inputted, the program 320 of the wireless terminal 300 checks whether it is in non-contact with the
The chip 205 of the
FIG. 6 is a diagram illustrating a settlement process based on a bank transfer using the
6 shows an OTP for banking (the chip 205 of the OTP card 200) which is generated in the chip 205 of the
6, the program 320 of the wireless terminal 300 includes an OTP (OTP) for banking, which is generated in the chip 205 of the non-contact
The operating server 100 receives OTP for banking (withdrawal account information and account password generated in the chip 205 of the
If the validity of the authentication key is authenticated, the operation server 100 confirms the deposit account information corresponding to the settlement request from the affiliate server 150 (625) and displays the withdrawal account information included in the account transfer information (Including, for example, the withdrawal account information encrypted by the chip 205 of the
The bank server 160 receives the account transfer request information for the account transfer transaction from the operation server 100 in operation 640 and transfers the account transfer transaction according to the designated account transfer transaction procedure using the account transfer request information (645). If the account transfer transaction is processed, the bank server 160 generates the account transfer result information for the account transfer transaction (650) and transmits the generated account transfer result information to the operation server (100) 655).
The operation server 100 receives the account transfer result information from the bank server 160 and provides the transfer result information to the program 320 of the wireless terminal 300 and the affiliate server 150 in operation 660, The program 320 of the OTP card 300 receives and outputs the account transfer result information for the account transfer transaction using the
100: Operation server 105: Information storage unit
110: payment request confirmation unit 115: information providing service
120: information receiving unit 125: authentication information restoring unit
130: validity authentication unit 135: transaction information configuration unit
140: Transaction Procedure Section 145: Payment Request Terminal
150: Affiliate server 160: Bank server
200: OTP card 300: wireless terminal
310: NFC module 320: program
Claims (16)
A first step of mapping and storing unique information of an OTP card for generating an OTP (One Time Password) for banking and an authentication rule of an authentication key generated in the OTP card;
A second step of determining a dynamic seed for generating an OTP for banking through a chip of the OTP card and providing the dynamic seed to a chip of the OTP card that is contactless-interfaced to the wireless terminal when the payment request using the account transfer is confirmed, ;
Generating an OTP for banking through a designated seed provided in the chip of the OTP card and the dynamic seed, encrypting the OTP for decryption through a designated bank server, generating an authentication key to be authenticated through the operation server, And transmits the response information including the encrypted OTP for banking and the encrypted authentication information to the wireless terminal through the contactless interface A third step of the program of the wireless terminal receiving response information including the encrypted OTP for banking and the encrypted authentication information from the chip of the OTP card through the contactless interface;
Wherein the program of the wireless terminal is dynamically generated from a chip of the OTP card that is contactless-interfaced to the wireless terminal and decrypted through the designated bank server, And transmits the authentication information, which is encrypted in the chip of the OTP card, to be decrypted through the operating server, to the OTP card, A server receiving the withdrawal account information, the account password, the encrypted OTP for banking, and the encrypted authentication information from the program of the wireless terminal;
A fifth step of decrypting the encrypted authentication information and restoring the unique information of the OTP card and the authentication key generated in the chip of the OTP card by decrypting the encrypted authentication information;
A sixth step of authenticating validity of an authentication key generated in a chip of the OTP card by using an authentication rule mapped to the unique information; And
When the validity of the authentication key is verified, the operating server transmits the withdrawal account information and the account password input through the program of the wireless terminal, the deposit account information corresponding to the payment request, the OTP card, And an encrypted OTP for banking to be decrypted through a designated bank server, and providing the bank transfer request information to a designated bank server to request a settlement based payment,
The encrypted authentication information is not decrypted through the program of the wireless terminal,
Wherein the encrypted OTP for banking is not decrypted through a program or an operation server of the wireless terminal.
Wherein the operation server further includes a step of mapping the supplier information of the partner company to be requested for payment and the deposit account information of the partner company,
Wherein the operating server further comprises checking the deposit account information mapped with the vendor information corresponding to the settlement request when validating the validity of the authentication key.
The operation server receiving payment request information including payment information of the user and the wireless terminal information of the user from the affiliate server;
And the operation server providing the payment history information to a program of a wireless terminal corresponding to the wireless terminal information,
Wherein the payment history information includes a payment amount for requesting payment, order information, and business information.
The program of the wireless terminal providing the withdrawal account information and the account password input by the user to the chip of the OTP card;
Encrypting the withdrawal account information and the account password so as to be decrypted through a designated bank server in the chip of the OTP card; And
And providing response information including the encrypted withdrawal account information and the account password from the chip of the OTP card to the contactless interface-connected wireless terminal.
The program of the wireless terminal determining an argument value for generating an authentication key in a chip of the OTP card and providing it as a chip of an OTP card that is contactless-interfaced to the wireless terminal; And
And generating an authentication key to be authenticated through an operation server based on the factor value in a chip of the OTP card.
Further comprising the step of generating an authentication key to be authenticated through the operation server using a factor value designated in a chip of an OTP card that is contactlessly interfaced with the wireless terminal.
Wherein the account transfer request through the program of the wireless terminal which is in contactless contact with the OTP card is given a status equivalent to the account transfer request through the banking app corresponding to the bank server.
Receiving the account transfer result information for the account transfer request information from the bank server; And
And the operation server providing the account transfer result information to the mobile terminal as a program of the mobile terminal.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150090873A KR101674812B1 (en) | 2015-06-26 | 2015-06-26 | Method for Providing Payment based on One Time Password Card |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150090873A KR101674812B1 (en) | 2015-06-26 | 2015-06-26 | Method for Providing Payment based on One Time Password Card |
Publications (1)
Publication Number | Publication Date |
---|---|
KR101674812B1 true KR101674812B1 (en) | 2016-11-09 |
Family
ID=57528879
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020150090873A KR101674812B1 (en) | 2015-06-26 | 2015-06-26 | Method for Providing Payment based on One Time Password Card |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR101674812B1 (en) |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101272600B1 (en) * | 2011-08-23 | 2013-06-10 | (주)에이티솔루션즈 | Method and System for Mobile Payment by Using Near Field Communication |
KR20130075761A (en) * | 2013-06-22 | 2013-07-05 | 주식회사 비즈모델라인 | Method for operating network type one time password by using authentication of near field communication medium |
KR20140007628A (en) * | 2012-07-10 | 2014-01-20 | (주)에이티솔루션즈 | Method for mobile banking of account transfer using security confirmation processing |
-
2015
- 2015-06-26 KR KR1020150090873A patent/KR101674812B1/en active IP Right Grant
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101272600B1 (en) * | 2011-08-23 | 2013-06-10 | (주)에이티솔루션즈 | Method and System for Mobile Payment by Using Near Field Communication |
KR20140007628A (en) * | 2012-07-10 | 2014-01-20 | (주)에이티솔루션즈 | Method for mobile banking of account transfer using security confirmation processing |
KR20130075761A (en) * | 2013-06-22 | 2013-07-05 | 주식회사 비즈모델라인 | Method for operating network type one time password by using authentication of near field communication medium |
Non-Patent Citations (1)
Title |
---|
[비특허] 연합뉴스 에이티솔루션즈 'OTP 통합인증센터 운영계약'체결* * |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
AU2021209143B2 (en) | Method and Apparatus for Providing Secure Services Using a Mobile Device | |
AU2018282344B2 (en) | Secure electronic entity for authorizing a transaction | |
TWI613602B (en) | Recommendation of payment credential to be used based on merchant information | |
CN112823335A (en) | System and method for password authentication of contactless cards | |
JP2022504072A (en) | Systems and methods for cryptographic authentication of contactless cards | |
JP2022502888A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
CN112602104A (en) | System and method for password authentication of contactless cards | |
CN112889046A (en) | System and method for password authentication of contactless cards | |
CN113168631A (en) | System and method for password authentication of contactless cards | |
GB2519143A (en) | Virtual POS System and Method | |
CN114846495A (en) | Card issuance with restricted virtual number | |
KR101250091B1 (en) | Method for Processing Transaction of Electronic Cash by using Near Field Communication, Handheld Device and Automatic Teller Machine | |
KR101695097B1 (en) | Method for Providing Simple Payment based on One Time Password Card | |
KR101250164B1 (en) | Method for Transferring Value of Electronic Cash by using Near Field Communication, Handheld Device and Automatic Teller Machine | |
KR101103189B1 (en) | System and Method for Issueing Public Certificate of Attestation using USIM Information and Recording Medium | |
KR101674812B1 (en) | Method for Providing Payment based on One Time Password Card | |
US10248947B2 (en) | Method of generating a bank transaction request for a mobile terminal having a secure module | |
JP2015525383A (en) | System and method for conducting transactions | |
KR102268468B1 (en) | Method for Providing Transaction Between Device by using NFC Tagging | |
EP3937454A1 (en) | Secure end-to-end pairing of secure element to mobile device | |
KR20130008124A (en) | Payment by using payment identification number dynamic mapped individual financial institution | |
KR20160139073A (en) | Method for Authenticating Interlocked Transaction by using One Time Code | |
KR20160093194A (en) | Method for Processing Two Channel Payment by using Contactless Media | |
KR20160137801A (en) | Method for Authenticating Interlocked Transaction by using One Time Code based on Contactless Media | |
KR20130048920A (en) | Method and system for converting a payment by using one time number |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AMND | Amendment | ||
AMND | Amendment | ||
X701 | Decision to grant (after re-examination) | ||
GRNT | Written decision to grant | ||
FPAY | Annual fee payment |
Payment date: 20191022 Year of fee payment: 4 |