KR101742105B1 - Phone number security certification apparatus using qr code and system thereof and metrhod thereof - Google Patents

Phone number security certification apparatus using qr code and system thereof and metrhod thereof Download PDF

Info

Publication number
KR101742105B1
KR101742105B1 KR1020150044749A KR20150044749A KR101742105B1 KR 101742105 B1 KR101742105 B1 KR 101742105B1 KR 1020150044749 A KR1020150044749 A KR 1020150044749A KR 20150044749 A KR20150044749 A KR 20150044749A KR 101742105 B1 KR101742105 B1 KR 101742105B1
Authority
KR
South Korea
Prior art keywords
information
web site
terminal
code
user
Prior art date
Application number
KR1020150044749A
Other languages
Korean (ko)
Other versions
KR20160116660A (en
Inventor
이용혁
Original Assignee
이용혁
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 이용혁 filed Critical 이용혁
Priority to KR1020150044749A priority Critical patent/KR101742105B1/en
Publication of KR20160116660A publication Critical patent/KR20160116660A/en
Application granted granted Critical
Publication of KR101742105B1 publication Critical patent/KR101742105B1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/06009Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking
    • G06K19/06037Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking multi-dimensional coding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/20Transfer of user or subscriber data

Abstract

The present invention can be applied to a terminal that recognizes a first QR code including first information, which is at least one of a name and a date of birth, a domain name of a first web site, and a unique value of a membership registration window, A user information confirmation unit for confirming user information based on at least one of information constituting the first information and the second information, A QR code generator for generating a second QR code corresponding to at least one of information constituting the first information and the second information and including a Universally Unique IDentifier (UUID) Providing a first web site server, which is a server that manages the first web site, with at least one information and a universal unique identifier, excluding the telephone number of the terminal, Relates to Phone security authentication device via the QR code included.

Description

TECHNICAL FIELD [0001] The present invention relates to a telephone number security authentication apparatus, system, and method for a telephone number security authentication using a QR code,

The present invention relates to telephone number security authentication.

In general, when you sign up for a website, fill in your phone number.

Such a phone number entry may be for the purpose of contacting the purchaser of the article in accordance with the use of the service such as purchasing the article, though the main purpose is authentication.

For this purpose, the website server that manages the web site stores the telephone number written at the time of membership registration as data.

However, there is a problem that the web site server is hacked from an illegal program or a hacker and the stored phone number is leaked.

For this reason, a leaked telephone number may cause a problem that can be used for stalking, voice phishing, and telephone fraud.

This problem may be the solution of a website server completely blocking hacking from illegal programs or hackers. However, illegal programs and hackers' technology is developed day by day, and it is difficult to completely block illegal programs and hackers from being hacked.

If the user can perform the function of contacting the purchaser of the goods by using the service such as the authentication of the person and the purchase of the goods without filling in the telephone number at the time of joining the membership, the telephone number will not be leaked even if the website server is hacked The above-described problems can be solved.

However, at present, a device capable of performing communication with a purchaser of a product due to the use of a service such as authentication of a person and purchase of goods, etc., without filling in a telephone number is not developed at the time of membership registration.

In view of the foregoing, an object of the present invention is, in one aspect, to provide a device for performing contact with a purchaser of a product in accordance with the use of a service such as authentication of a person and purchase of a goods without writing a phone number at the time of membership registration.

In one aspect, the present invention recognizes a first QR code including first information that is at least one of a name and date of birth, a domain name of a first web site, and a unique value of a membership subscription window, A user information receiver for receiving second information, which is information on the terminal, from the terminal and the first information, user information for confirming the user information based on at least one of the first information and the second information, A QR code generation unit for generating a second QR code corresponding to at least one of information constituting the verification unit, the first information and the second information and including a Universally Unique IDentifier (UUID) One or more pieces of information excluding the telephone number of the terminal and the universal unique identifier among the pieces of information constituting the information and the second information are provided to the first website server which is the server for managing the first website And provides the telephone number security authentication device via a QR code, which includes providing the user information section.

As described above, according to the present invention, it is possible to provide a device capable of performing contact with a purchaser of a product when using a service such as authentication of a person and purchase of goods, without writing a phone number at the time of membership registration.

1 is a diagram illustrating a telephone number security authentication apparatus through a QR code according to an embodiment of the present invention.
2 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to an embodiment of the present invention.
3 is a diagram illustrating an example of an operation of a phone number security authentication apparatus through a QR code according to an embodiment of the present invention.
4 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to another embodiment of the present invention.
5 is a diagram illustrating an example of an operation of a telephone number security authentication apparatus using a QR code according to another embodiment of the present invention.
6 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to another embodiment of the present invention.
7 is a diagram illustrating an example of the operation of the telephone number security authentication apparatus using the QR code according to another embodiment of the present invention.
8 is a flowchart illustrating a method of authenticating a telephone number security through a QR code according to an embodiment of the present invention.

Hereinafter, some embodiments of the present invention will be described in detail with reference to exemplary drawings. It should be noted that, in adding reference numerals to the constituent elements of the drawings, the same constituent elements are denoted by the same reference symbols as possible even if they are shown in different drawings. In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear.

In describing the components of the present invention, terms such as first, second, A, B, (a), and (b) may be used. These terms are intended to distinguish the constituent elements from other constituent elements, and the terms do not limit the nature, order or order of the constituent elements. When a component is described as being "connected", "coupled", or "connected" to another component, the component may be directly connected to or connected to the other component, It should be understood that an element may be "connected," "coupled," or "connected."

A device for authenticating a telephone number through a QR code according to an exemplary embodiment of the present invention may include a name registration unit for registering a name of the first web site, a date of birth, domain information of the first web site, A user information receiver for receiving second information and first information, which is information on a terminal, from a terminal that recognizes a first QR code including first information, first information and second information, Generates a second QR code corresponding to at least one of the information constituting the first information and the second information and including a Universally Unique IDentifier (UUID) And one or more information excluding the telephone number of the terminal among the information constituting the first information and the second information and the universal unique identifier to the first web site And a user information providing unit for providing the information to the server.

1 is a diagram illustrating a telephone number security authentication apparatus through a QR code according to an embodiment of the present invention.

Referring to FIG. 1, a phone number security authentication apparatus 100 through a QR code according to an exemplary embodiment of the present invention includes a name and a date of birth, domain information of a first web site, And a user information receiving unit 110 for receiving second information and first information from the terminal that has recognized the first QR code including first information that is one or more of membership subscription window unique values.

For example, the first information may include information such as a name and date of birth to be described at the time of joining a member to use the service of the first web site, a first web site for authenticating a connection from a server that manages the first web site And the domain information of the user.

Also, the first information may include a member registration window unique value for allowing the server managing the first web site to advance the membership registration window to the next step of the mobile phone authentication after the telephone number authentication.

When information such as a name and a date of birth is input to the member registration window to use the service of the first web site, the member registration window can provide the first QR code including the first information.

When the terminal recognizes the provided first QR code, the second information which is the information of the terminal and the first information recognized from the first QR code are transmitted on-line, and the transmitted information is received by the user information receiver .

The second information may further include not only the telephone number of the terminal, the wicked card information of the terminal, and software information installed in the terminal, but also information required by the communication company apparatus.

The apparatus 100 for authenticating a telephone number through a QR code according to an exemplary embodiment of the present invention includes a user information verifying unit for verifying user information based on one or more pieces of information constituting the first information and the second information 120).

The user information verification unit 120 firstly determines whether one or more pieces of information constituting the first information and the second information correspond to one or more pieces of information, and determines one or more pieces of information that constitute the first information and the second information May be provided to the communication company apparatus, and the user information may be confirmed by receiving the user confirmation from the communication company apparatus and making a secondary determination.

For example, the user information verification unit 120 can determine the user information based on the first name and the date of birth, which are a part of the first information, and the software information, which is a part of the second information.

More specifically, the software information may include the name and date of birth when installing the software. That is, the user information confirmation unit 120 can determine the user information by first determining whether the name and the date of birth, which are part of the first information, correspond to the name and date of birth included in the software information, which is a part of the second information.

For example, the user information confirmation unit 120 may provide at least one of the name and date of birth of the first information, the card information of the terminal, which is a part of the second information, and the telephone number of the terminal, The user information can be confirmed by receiving the user confirmation from the communication carrier apparatus.

More specifically, the communication carrier device may have information on personal information such as the name of the user who issued the card, the date of birth, and the like. Therefore, the communication carrier apparatus detects the personal information that was previously stored by using the wichcard information provided from the user information verification unit 120, and stores the detected personal information and the name, It is possible to determine whether or not the user's identity is matched with the date of birth, and transmit the user's confirmation to the user information confirmation unit 120.

As described above, when it is received from the communication service provider apparatus that the user has been confirmed, the user information confirmation unit 120 can make a secondary determination that the user information is confirmed. Otherwise, when the user authentication information is not received from the communication company apparatus, the user information verification unit 120 may determine that the user information is not confirmed.

The apparatus 100 for authenticating a telephone number through a QR code according to an embodiment of the present invention corresponds to one or more pieces of information constituting the first information and the second information and includes a Universally Unique IDentifier (UUID) And a QR code generator 130 for generating a second QR code including the second QR code.

The QR code has a two-dimensional structure that can record a maximum of 7,089 characters, a maximum of 4,296 characters, or a maximum of 1,817 Chinese characters by utilizing the width and the length, so that the long-term Internet address, photograph, video information, Can be recorded.

On the other hand, existing bar codes basically have a one-dimensional configuration capable of recording only numerical information of up to 20 letters using only the width, so that information can not be recorded.

The universal unique identifier is unique, such as the name used to identify and distinguish entities on the network.

In detail, it can be simple if there exists a central management system and serial number, but it is impossible for centralized management system to be developed concurrently and independently. For this reason, the developer, rather than the central management system, Is required. For this reason, it is possible for a developer to identify objects on the network using a universal unique identifier so that they can be distinguished.

In the above description, the QR code generation unit 130 plays a role as a development subject.

The apparatus for authenticating a telephone number 100 through a QR code according to an embodiment of the present invention includes at least one information excluding a telephone number of a terminal from among information constituting the first information and the second information, To the first web site server, which is a server for managing the first web site.

For example, the user information providing unit 140 may provide a name, a date of birth, a membership window unique value, and a universal unique identifier, which are one of the first information, to the server managing the first web site.

After checking the information provided from the user information providing unit 140, the server managing the first web site may proceed to the next step of authenticating the mobile phone based on the membership subscription window unique value.

According to the apparatus for authenticating a telephone number through a QR code according to an embodiment of the present invention, data of a first web site server is transmitted to a third party other than the owner of the terminal and the first web site The telephone number of the terminal is not leaked even if it is leaked. That is, the owner of the terminal can prevent damage to one or more of stalking, voice phishing, and telephone fraud due to leakage of the telephone number of the terminal.

2 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to an embodiment of the present invention.

2, the owner of the terminal 230 may enter personal information such as name and date of birth in the membership window 210 of the first web site.

When the mobile phone authentication is executed, the membership joining window 210 displays a first QR code 220 including first information that is at least one of the entered name, the entered date of birth, the domain information of the first web site, (S1).

Thereafter, the first information is obtained by recognizing the first QR code 220 generated using the software installed in the terminal 230 (S2).

When step S2 is performed, the terminal 230 transmits the second information, which is at least one of the telephone number of the terminal 230, the wicked card information of the terminal 230, and installed software information, and the first information obtained in step S2, To the phone number security authentication apparatus 100 through the QR code according to the embodiment (S3).

That is, in step S3, the user information receiver 110 of the phone number security authentication apparatus 100 via the QR code according to the embodiment of the present invention transmits the second information, which is information on the terminal 230, 1 information. The second information may be the telephone number of the terminal 230, the wicked card information of the terminal 230, and software information installed in the terminal 230, as well as information requested by the communication company apparatus.

The user information verification unit 120 can determine user information by first determining whether or not each of the pieces of information constituting the received first information and second information corresponds to one or more. When the user information is firstly confirmed, the user information verification unit 120 may provide at least one of the information constituting the first information and the second information to the communication enterprise apparatus 240 (S4).

The communication service provider apparatus 240 determines whether the personal information items such as the user's name and date of birth stored in the data correspond with the provided information when the terminal 230 is opened, confirms the user information, Unit 120 (S5).

That is, the user information confirmation unit 120 may determine the user information based on the received user confirmation in step S5.

If the user information is confirmed by the first judgment and the second judgment, the QR code generator corresponds to one or more pieces of information constituting the first information and the second information received in the step S3, and the universal unique identifier And generates the included second QR code.

The user information providing unit 140 transmits one piece of information excluding the telephone number of the terminal 230 among the information constituting the first information and the second information and the generated universal unique identifier to the server managing the first website 250 (S6).

The first web site server 230 can confirm the information provided in step S6 and proceed the membership registration window 210 to the next step of the mobile phone authentication (S7).

As described above, by performing the steps S1 to S7 using the phone number security authentication apparatus 100 using the QR code according to the embodiment of the present invention, the first web site server 250 The phone number of the terminal 230 is not leaked even when the terminal 230 is hacked. Therefore, it is possible to prevent one or more of stalking, voice phishing, and phone scams due to the leakage of the telephone number.

3 is a diagram illustrating an example of an operation of a phone number security authentication apparatus through a QR code according to an embodiment of the present invention.

Referring to FIG. 3, the user information receiver of the phone number security authentication apparatus through the QR code according to an embodiment of the present invention, which operates in cooperation with peripheral devices, receives the first information and the second information (S310).

When the step S310 is performed, the user information confirmation unit confirms the user information based on at least one of the information constituting the received first information and the received second information (S320).

The step S320 will be described in detail. First, the user information confirmation unit judges whether the first information obtained by sensing the first QR code corresponds to one or more of the information constituting the second information of the terminal, (S321).

More specifically, the step S321 compares the first information, which is information written in the web site by the user information confirmation unit, with the second information, which is the information stored in the terminal, and confirms that the user information is matched if they correspond, It can be confirmed that they do not match.

If it is determined in step S321 that the user information matches, the user information verification unit provides at least one of the information constituting the first information obtained by sensing the first QR code and the second information of the terminal to the communication company apparatus, In step S323, it is determined whether or not the user information received from the communication service provider is secondarily determined.

More specifically, in step S323, one or more pieces of information constituting the first information written in the first web site and the second information stored in the terminal are compared with the personal information information stored in advance in the communication carrier apparatus, The matching information or the inconsistency information is received from the communication company apparatus, and the user information confirming unit can confirm that the user information is consistent or inconsistent.

If it is confirmed in step S320 that the user information is consistent (the user information in both step S321 and step S323 are identical), the QR code generation unit corresponds to one or more pieces of information constituting the first information and the second information received in step S310 And generates a second QR code including a universal unique identifier (S330).

When the step S330 is completed, the user information providing unit provides at least one information and a universal unique identifier, excluding the telephone number of the terminal, among the information constituting the first information and the second information to the first web site server at step S340.

The phone number security authentication apparatus through the QR code according to the embodiment of the present invention performs steps S310 to S340 shown in FIG. 3, so that the first website server does not store the terminal phone number. That is, even if the first website server is hacked by illegal programming or hackers, the owner of the terminal can be protected from one or more of stalking, voice phishing, and phone fraud.

4 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to another embodiment of the present invention.

Referring to FIG. 4, the operation of steps S1 through S7 with the peripheral device, which is the subscription window 210, the terminal 230, and the first web site server 250, May be partly identical to an example of interworking with a phone number security authentication device and peripheral devices via a QR code according to an example.

However, the telephone number security authentication apparatus 101 via the QR code according to another embodiment of the present invention may use at least one information and universal unique identifier of each information constituting the first information and the second information as first data And a domain authentication unit (150) for managing the connection of the first website server based on whether or not at least one of the first information and the second information constituting the second information corresponds to the domain information of the website 160), and the step S8 may be further performed.

For example, after steps S1 to S7 are performed to complete the membership, the first web site server 250 may request the domain authentication unit 160 to access the information received in step S6 have.

For the above case, the data registration unit 150 of the telephone number security authentication apparatus 101 via the QR code according to another embodiment of the present invention may store one or more pieces of information among the pieces of information constituting the first information and the second information And a universal unique identifier in advance.

In addition, the data registration unit 150 additionally stores the domain information of the first web site, and the domain authentication unit 160 accesses the website server 250 that requests the connection based on the domain information of the first web site To be allowed or blocked.

For example, when the first web site server 250 requests the connection, the domain authentication unit 160 confirms that the first web site server 250 is the first web site server 250 based on the domain information of the first web site, can do.

On the other hand, if another web site server not related to the steps S1 to S6 requests the connection, the domain authentication unit 160 confirms that the web site server is another web site server based on the domain information of the stored web site, Connection can be blocked.

As described above, the phone number security authentication apparatus 101 via the QR code according to another embodiment of the present invention has an effect of preventing the leakage of stored data by interrupting the connection of the irrelevant website server.

5 is a diagram illustrating an example of an operation of a telephone number security authentication apparatus using a QR code according to another embodiment of the present invention.

FIG. 5 illustrates an example of operating in cooperation with one or more first web sites and a first web site server, unlike FIG. 3, which illustrates operation in cooperation with a first web site and a first web site server. do.

Referring to FIG. 5, the user information receiving unit can monitor whether the first information and the second information are received or the website server is connected (S510).

Then, the user information receiver determines whether the first information and the second information are received (S520).

If it is determined in step S520 that the first information and the second information are received, the user information confirmation unit confirms the user information based on the received first information and the second information (S530).

In step S530, the user information confirmation unit first determines whether the first information obtained by sensing the first QR code and the second information of the terminal correspond to one or more information, (S531).

If it is determined in step S531 that the user information matches, the user information verification unit provides one or more pieces of information constituting the first information obtained by sensing the first QR code and the second information of the terminal to the communication service provider And determines whether or not the user information received by the communication service provider is secondarily determined (S533).

If it is determined in step S533 that the user information is matched, the QR code generator generates a second QR code corresponding to at least one of the information constituting the first information and the second information and including the universal unique identifier ( S540).

Next, the user information providing unit provides the first web site server with at least one information and a universally unique identifier except for the telephone number of the terminal among the information constituting the first information and the second information at operation S550.

When the step S550 is performed, the data registration unit stores at least one of the pieces of information constituting the first information and the second information as data (S560).

The above-described steps S520 to S550 may operate in a manner similar to steps S310 to S340 shown in FIG.

If the determination in step S560 is NO or if it is determined in step S520, step S531, or step S533 that the domain authentication unit has determined that the web site server is connected (S570).

If it is detected in step S570 that the web site server is connected, the domain authentication unit determines whether the domain information of the detected web site server corresponds to the domain information of the stored data in step S560 (S580).

If it is determined in step S580 that the stored data corresponds to the domain information, the domain authentication unit may allow connection to the website server (S591).

Alternatively, if it is determined in step S580 that the stored data does not correspond to the domain information, the domain authentication unit may block the connection to the website server (S593).

5 illustrates an operation of performing operation S12 in response to a connection request from the web site server after performing operation S11, which is an operation related to reception of first information and second information, from the terminal. However, It is not.

That is, the apparatus for authenticating the telephone number through the QR code according to another embodiment of the present invention may operate in the order of steps S510, S12 and S11.

If the first information and the second information are received at the same time and the connection to the website server is detected, the step S12 of connection to the website server is performed first and the step S11 ) May be performed later.

Referring to FIG. 4, the step S12 of accessing the website server may be step S6, and the step S11 of receiving the first information and the second information may be S3 to S6.

The phone number security authentication apparatus through the QR code according to another embodiment of the present invention performs the steps S510 to S593 to store the universal unique identifier instead of the telephone number of the terminal. This makes it possible to prevent one or more of stalking, voice phishing, and telephone fraud caused by leakage of the telephone number of the terminal even if the web site server is hacked by illegal sites or hackers and data is leaked.

Further, the telephone number security authentication device through the QR code according to another embodiment of the present invention further authenticates the web site server to which the access is attempted, thereby blocking access to another web site server so that one or more of the first information and the second information There is an effect of preventing leakage.

6 is a diagram illustrating an example of interworking with a telephone number security authentication apparatus and peripheral devices through a QR code according to another embodiment of the present invention.

Referring to FIG. 6, the operations of steps S1 through S8 with the peripheral device, which is the subscription window 210, the terminal 230, and the first web site server 250, May be partially identical to an example of interworking with a telephone number security authentication device and peripheral devices through a QR code according to an embodiment.

However, the apparatus for authenticating the telephone number 102 via the QR code according to another embodiment of the present invention may include a domain authentication unit 102 for managing the connection of the server managing the first Web site based on the stored domain information, And further includes a communication connection unit 170 for communicatively connecting the website server 250 and the terminal 230, and may further perform step S9.

For example, when the first web site server 250 requests the communication connection with the terminal 230 (S8), the communication connection unit 170 transmits the data based on the pre-stored data So that the first website server 250 and the terminal 230 can be communicatively connected.

When the user of the terminal 230 purchases a product through the first web site, the first web site server 250 communicates with the terminal 230 for various reasons such as re-confirming the purchase request or providing a message related to product delivery, A connection may be required.

When the first web site server 250 requests a communication connection with the terminal 230 in step S8, the communication connection unit 170 can communicate with the corresponding terminal 230 based on the previously stored data (S9).

In step S8, the first website server 250 provides the universal unique identifier of the connection request and the second QR code to the communication connection unit 170, and the universal unique identifier of the second QR code provided to the communication connection unit 170 It is possible to detect the telephone number of the terminal 230 from the data stored in advance. Thus, the communication connection unit 170 can establish a communication connection with the first website server 250 and the terminal 230 (S9).

That is, although the telephone number security authentication apparatus 102 via the QR code according to another embodiment of the present invention does not provide the telephone number of the terminal 230 to the first web site server 250, The web site server 250 and the terminal 230 can communicate with each other.

In addition, the function of the domain authentication unit shown in FIG. 4 may be further added to distinguish the communication connection request of another web site server, not the communication connection request of the first web site server, so that the connection with the communication terminal 230 may be interrupted.

7 is a diagram illustrating an example of the operation of the telephone number security authentication apparatus using the QR code according to another embodiment of the present invention.

FIG. 7 is an example of operating in conjunction with one or more first web sites and a first web site server, and may be somewhat similar to FIG.

Referring to FIG. 7, the user information receiving unit may monitor whether the first information and the second information are received and monitor the connection of the website server (S710).

Then, the user information receiver determines whether the first information and the second information are received (S720).

If it is determined in step S720 that the first information and the second information are received, the user information confirmation unit confirms the user information based on the received first information and the second information (S730).

If it is determined in step S730 that the user information confirmation unit determines that the first information obtained by sensing the first QR code matches with one or more of the information constituting the second information on the terminal, (S731).

Next, if it is determined in step S731 that the user information matches, the user information verification unit provides one or more pieces of information constituting the first information obtained by sensing the first QR code and the second information of the terminal to the communication service provider And determines whether or not the user information is identical by judging whether or not the user has received confirmation from the communication service provider (S733).

If it is determined in step S733 that the user information matches, the QR code generation unit generates a second QR code corresponding to one or more pieces of information constituting the first information and the second information, and including a universal unique identifier S740).

Next, in step S750, the user information providing unit provides one or more information and a universal unique identifier, excluding the telephone number of the terminal, among the information constituting the first information and the second information to the first website server.

When step S750 is performed, the data registration unit stores one or more pieces of information constituting the first information and the second information as data (S760).

If it is determined in step S760, or if the result of step S720, step S731, or step S733 is NO, the domain authentication unit detects whether the server is connected (S770).

If it is detected in step S570 that the web site server is connected, the communication connection unit determines whether the second data transmitted in connection with the website server corresponds to the first data stored in step S780.

The second data may be data in which the web site server stores at least one of the information provided in step S750.

If it is determined in step S780 that the web page is compatible, the communication connection unit connects the website server and the terminal (S791).

On the other hand, if it is determined in step S780 that it does not correspond, the communication connection unit may block the connection of the server (S793).

By performing steps S780 to S793 described above, the communication connection between the other website and the terminal can be blocked.

The illustrated steps S710 to S780 may be similar to steps S510 to S580 shown in FIG.

FIG. 7 illustrates an operation of performing operation S22 of receiving a first information and a second information from a terminal, and then performing an operation S22 corresponding to a communication connection request from the website server to the terminal But is not limited thereto.

That is, the apparatus for authenticating the telephone number through the QR code according to another embodiment of the present invention may operate in steps S710, S22 and S21.

If the first information and the second information are received at the same time and the connection to the website server is detected, the web site server first performs the step S22 regarding the communication connection request and transmits the first information and the second information The step S21 may be performed later.

6, the step S22 of the website server requesting the communication connection may be S8, and the step S21 of receiving the first information and the second information may be S3 to S6 .

The first QR code further includes a second website address for performing a function of the phone number security authentication device through the QR code, and the terminal executes the second website address to transmit the first information and the second information To the first web site server, at least one information and a universal unique identifier, excluding the telephone number of the terminal, from among the information constituting the first web site server.

Thus, the terminal can execute the second website address and transmit the first information and the second information to the user information receiver even if the terminal does not have a program for transmitting the first information and the second information to the user information receiver .

Hereinafter, a telephone number security authentication system using a QR code including a telephone number security authentication device using the QR code described with reference to FIGS. 1 to 7 will be briefly described.

A system for authenticating a telephone number through a QR code according to an embodiment of the present invention includes a terminal capable of detecting a QR code; A first web site for providing a first QR code including first information that is at least one of a name, a date of birth, domain information, and a membership subscription window unique value entered in a membership subscription window; A first web site server for managing a first web site; A communication company apparatus providing a user confirmation based on at least one of a name, date of birth, domain information, membership subscription window unique value, and terminal information provided from a phone number security authentication apparatus through a QR code; A user information receiver for receiving second information and first information from the terminal that has recognized the first QR code including the first information, information about the terminal, at least one of the information constituting the first information and the second information A second QR code corresponding to at least one of information constituting the first information and the second information and including a Universally Unique IDentifier (UUID) A QR code generator for generating a QR code, and a user information providing unit for providing at least one information and a universal unique identifier excluding the telephone number of the terminal among the information constituting the first information and the second information to a server for managing the first website And a telephone number security authentication device via a QR code including a part.

The terminal may include a function of detecting a first QR code provided by the first website using the installed camera and the installed program.

The communication company apparatus compares at least one of the name, the date of birth, the telephone number of the terminal, the card information of the terminal, the software information installed in the terminal, and the information requested by the communication company apparatus, And can provide confirmation.

For example, when the communication carrier apparatus receives the name and the date of birth from the user information confirmation unit, the communication carrier apparatus searches for the name and date of birth provided in the own data, and provides the user information confirmation unit .

Alternatively, if the name and the date of birth provided in the own data are searched, the communication carrier apparatus can provide the user information confirmation unit that the user has not been confirmed.

In addition, the telephone number security authentication system using the QR code of the present invention can perform all the operations performed by the telephone number security authentication apparatus through the QR code of the present invention described with reference to Figs. 1 to 7.

Hereinafter, a telephone number security authentication method using a QR code, which is an operation performed by the telephone number security authentication apparatus using the QR code described with reference to FIGS. 1 to 7, will be briefly described.

8 is a flowchart illustrating a method of authenticating a telephone number security through a QR code according to an embodiment of the present invention.

Referring to FIG. 8, a method for authenticating a telephone number using a QR code according to an exemplary embodiment of the present invention includes: a name and a date of birth entered in a membership registration window of a first web site; domain information of a first web site; (S800) for receiving second information and first information from the terminal that has recognized the first QR code including first information that is at least one of the first information and the first information.

For example, the first information may include information such as a name and a date of birth to be described at the time of signing up for use of the service of the first web site, domain information of the first web site for authenticating access from the first web site server . ≪ / RTI >

Also, the first information may include a member registration window unique value for allowing the first web site server to advance the membership registration window to the next step of the mobile phone authentication after the telephone number authentication.

When information such as a name and a date of birth is input to the member registration window to use the service of the first web site, the member registration window can provide the first QR code including the first information.

Thereafter, after the terminal recognizes the provided first QR code, the terminal transmits the second information, which is at least one of the telephone number of the terminal, the wicked card information of the terminal, the software information installed in the terminal, The first information recognized from the QR code may be transmitted on-line, and the information transmitted from the terminal may be received in the user information receiving step.

A method for authenticating a telephone number using a QR code according to an exemplary embodiment of the present invention includes a step of verifying user information based on at least one of information constituting the first information and the second information ).

The user information verification step (S810) firstly judges whether or not each of the pieces of information constituting the first information and the second information corresponds to each other, and determines one of the pieces of information constituting the first information and the second information Or more can be provided to the communication company apparatus and the user information can be confirmed by making a secondary determination as to whether or not the user is confirmed from the communication company apparatus.

For example, the user information confirmation step S810 may determine the user information based on the first name and the date of birth, which are part of the first information, and the correspondence between the software information that is a part of the second information and the software information.

Specifically, the software information includes the name and date of birth when installing the software. That is, the user information confirmation step (S810) can determine the user information by first determining whether the name and the date of birth, which are part of the first information, correspond to the name and date of birth included in the software information that is a part of the second information.

For example, the user information confirmation step (S810) may provide at least one of the name and date of birth as part of the first information, the card information of the terminal, which is a part of the second information, and the telephone number of the terminal, The user information can be confirmed by receiving the user confirmation from the communication carrier apparatus.

To be more specific, the communication carrier apparatus may have personal information such as information of the wicked card of the terminal, name of the user who issued the wicked card, date of birth, and the like. Therefore, the communication company apparatus can detect the personal information information that has been held in advance by using the wicked card information provided in the user information checking step. Then, it is possible to determine whether the communication carrier apparatus matches the detected personal information, the name and date of birth provided in the user information confirmation step, and transmit the user confirmation in the user information confirmation step.

That is, if it is received from the communication service provider that the user has been confirmed, the user information confirmation step S810 may determine that the user information is confirmed. Alternatively, if it is determined that the user has not been confirmed by the communication service provider apparatus, it may be determined that the user information is not confirmed in the user information confirmation step (S810).

A method for authenticating a telephone number through a QR code according to an exemplary embodiment of the present invention is a method for authenticating a telephone number using a universal unique identifier (UUID) corresponding to one or more pieces of information constituting first information and second information And a QR code generation step (S820) for generating a second QR code.

The QR code has a two-dimensional structure that can record a maximum of 7,089 characters, a maximum of 4,296 characters, or a maximum of 1,817 Chinese characters by utilizing the width and the length, so that the long-term Internet address, photograph, video information, Can be recorded.

On the other hand, existing bar codes basically have a one-dimensional configuration capable of recording only numerical information of up to 20 letters using only the width, so that information can not be recorded.

The universal unique identifier is unique, such as the name used to identify and distinguish entities on the network.

In detail, it can be simple if there exists a central management system and serial number, but it is impossible for centralized management system to be developed concurrently and independently. For this reason, the developer, rather than the central management system, Is required. For this reason, it is possible for a developer to identify objects on the network using a universal unique identifier so that they can be distinguished.

A method for authenticating a telephone number using a QR code according to an exemplary embodiment of the present invention is a method for authenticating a telephone number using a QR code in which at least one information excluding a telephone number of a terminal from among information constituting a first information and a second information, And providing the user information to the server managing the web site (S830).

For example, the user information providing step S830 may provide a name, a date of birth, a membership window unique value, and a universal unique identifier, which are one of the first information, to the server managing the first web site.

Then, the server managing the first web site can confirm the information provided in the user information providing step, and then proceed to the next step of the mobile phone authentication based on the membership subscription window unique value.

According to the method for authenticating a telephone number using a QR code according to an exemplary embodiment of the present invention, data of a server managing the first web site by illegal programming or a hacker is transmitted to the owner of the terminal and the first web site Since the telephone number of the terminal is not leaked even if it is leaked to a third party other than the user, it is possible to prevent one or more of stalking, voice phishing, and telephone fraud.

In addition, the telephone number security authentication method using the QR code of the present invention can perform all the operations performed by the telephone number authentication apparatus through the QR code of the present invention described with reference to Figs. 1 to 7.

While the present invention has been described in connection with what is presently considered to be the most practical and preferred embodiments, it is to be understood that the invention is not limited to the disclosed embodiments. That is, within the scope of the present invention, all of the components may be selectively coupled to one or more of them. The foregoing description is merely illustrative of the technical idea of the present invention, and various changes and modifications may be made by those skilled in the art without departing from the essential characteristics of the present invention. The scope of protection of the present invention should be construed according to the following claims, and all technical ideas within the scope of equivalents should be construed as falling within the scope of the present invention.

Claims (8)

From a terminal that recognizes a first QR code including first information that is at least one of a name and a date of birth entered in the membership window of the first web site, domain information of the first website, and unique value of the membership window, A user information receiving unit for receiving second information and first information which are information on the first information;
Wherein the first information is firstly checked according to whether or not at least one of the information constituting the first information and the second information corresponds to each other, and one or more pieces of information constituting the first information and the second information are communicated A user information confirmation unit for providing the information to the business entity apparatus and secondarily confirming the user information based on the user confirmation received from the communication business entity apparatus;
A QR code generation unit for generating a second QR code including a universally unique identifier (UUID) if the user information is identified as a primary and a secondary;
And providing the universal unique identifier to the first web site server, which is a server that manages the first web site, of at least one of the information constituting the first information and the second information, excluding the telephone number of the terminal User information provisioning;
A data register for storing at least one of information constituting the first information and the second information and the universal unique identifier as first data; And
The first web site server and the second web site server are connected to each other by using the telephone number of the terminal stored in the first data according to whether or not at least one of the information stored as the second data received from the first website server and the information stored as the first data correspond, A communication connection unit connecting the site server and the terminal;
And a QR code for performing a user authentication but not providing a telephone number to the first website server. The method according to claim 1,
Wherein the first web site server confirms the information provided from the user information providing unit and then proceeds to the next step of the mobile phone authentication. delete The method according to claim 1,
A data registration unit for storing at least one of information constituting the first information and the second information and the universally unique identifier as first data and a data registration unit for storing the first information and each of the information constituting the second information Further comprising a domain authentication unit for managing connection of the first web site server based on whether or not at least one of the first and second web site servers corresponds to domain information of the web site,
The domain authentication unit,
And a QR code for allowing access to the first web site server requesting the connection if the domain information of the first web site requesting the connection corresponds to domain information of the first web site previously stored. delete The method according to claim 1,
Wherein the first QR code further comprises a second web site address performing a function of a phone number security authentication device via the QR code,
The terminal executes the second web site address and transmits one or more pieces of information excluding the telephone number of the terminal among pieces of information constituting the first information and the second information and the universal unique identifier to the first website Phone number security authentication device through QR code provided to server. A terminal capable of detecting a QR code;
A first web site for providing a first QR code including first information that is at least one of a name, a date of birth, domain information, and a membership window unique value entered in a membership window;
A first website server for managing the first website;
A service provider apparatus for providing a user confirmation on the basis of at least one of the name, date of birth, domain information, the membership subscription window unique value, and the terminal information provided from the user information confirmation unit; And
A user information receiver for receiving second information and first information, which are information on the terminal, from the terminal that has recognized the first QR code including the first information, Wherein the first information is firstly checked according to whether or not at least one of the pieces of information corresponds to each other, and at least one of the information constituting the first information and the second information is provided to the communication company apparatus, A QR code generation unit that generates a second QR code including a universally unique identifier (UUID) when the user information is first and secondly verified; One or more pieces of information excluding the telephone number of the terminal among pieces of information constituting the first information and the second information, To a first web site server that manages the first web site, information on one or more pieces of information constituting the first information and the second information, 1 stored in the first data and a second data stored in the second data in accordance with whether or not at least one of information stored in the first data and information stored in the first data is stored in the first data, And a communication connection unit for connecting the web site server and the terminal using a telephone number of the first web site server, wherein the first web site server is provided with a phone number security authentication device through a QR code A phone number security authentication system with embedded QR code. From a terminal that recognizes a first QR code including first information that is at least one of a name and date of birth entered in the membership window of the first web site, domain information of the first website, and unique value of the membership window, A user information receiving step of receiving second information which is information on the first information and the first information;
Wherein the first information is firstly checked according to whether or not at least one of the information constituting the first information and the second information corresponds to each other, and one or more pieces of information constituting the first information and the second information are communicated A user information confirmation step of providing the information to the business entity apparatus and secondarily confirming the user information based on the user confirmation received from the communication enterprise apparatus;
A QR code generation step of generating a second QR code including a Universally Unique IDentifier (UUID) if the user information is identified as a primary and a secondary;
And providing the universal unique identifier to the first web site server, which is a server that manages the first web site, of at least one of the information constituting the first information and the second information, excluding the telephone number of the terminal Providing user information;
A data register for storing at least one of information constituting the first information and the second information and the universal unique identifier as first data; And
The first web site server and the second web site server are connected to each other by using the telephone number of the terminal stored in the first data according to whether or not at least one of the information stored as the second data received from the first website server and the information stored as the first data correspond, A communication connection unit connecting the site server and the terminal;
And performing a user authentication, wherein the telephone number is not provided to the first web site server.
KR1020150044749A 2015-03-31 2015-03-31 Phone number security certification apparatus using qr code and system thereof and metrhod thereof KR101742105B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020150044749A KR101742105B1 (en) 2015-03-31 2015-03-31 Phone number security certification apparatus using qr code and system thereof and metrhod thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020150044749A KR101742105B1 (en) 2015-03-31 2015-03-31 Phone number security certification apparatus using qr code and system thereof and metrhod thereof

Publications (2)

Publication Number Publication Date
KR20160116660A KR20160116660A (en) 2016-10-10
KR101742105B1 true KR101742105B1 (en) 2017-05-31

Family

ID=57145849

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020150044749A KR101742105B1 (en) 2015-03-31 2015-03-31 Phone number security certification apparatus using qr code and system thereof and metrhod thereof

Country Status (1)

Country Link
KR (1) KR101742105B1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102415769B1 (en) * 2021-02-26 2022-07-11 주식회사 와이닷츠 User authentication apparatus
KR102602086B1 (en) * 2023-07-11 2023-11-15 (주)포마컴퍼니 Operation server for safe phone service using qr code and its operation method

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014199653A (en) 2013-03-15 2014-10-23 株式会社リコー Information processing system, control method of information processing system, information processing apparatus, control method of information processing apparatus, and program

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014199653A (en) 2013-03-15 2014-10-23 株式会社リコー Information processing system, control method of information processing system, information processing apparatus, control method of information processing apparatus, and program

Also Published As

Publication number Publication date
KR20160116660A (en) 2016-10-10

Similar Documents

Publication Publication Date Title
US11405781B2 (en) System and method for mobile identity protection for online user authentication
AU2017295345B2 (en) Two-channel authentication proxy system capable of detecting application tampering, and method therefor
CN105262779B (en) Identity authentication method, device and system
KR101468977B1 (en) Method and system for authentication using a mobile device
EP1922632B1 (en) Extended one-time password method and apparatus
KR101214839B1 (en) Authentication method and authentication system
CN106170793B (en) System, method and apparatus for secure log
US11403633B2 (en) Method for sending digital information
KR20120083491A (en) Terminal management system and terminal management method
KR20120099782A (en) User authentication method, user authentication system, and portable communications terminal
CN104125230B (en) A kind of short message certification service system and authentication method
KR20060102456A (en) System and method for authenticating user, server for authenticating user and recording medium
KR101603963B1 (en) Authentication method using fingerprint information and certification number, user terminal and financial institution server
KR20080112674A (en) Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function
KR20190111006A (en) Authentication server, authentication system and method
KR101742105B1 (en) Phone number security certification apparatus using qr code and system thereof and metrhod thereof
US20170200154A1 (en) Method for protecting the resale of an object provided with an nfc tag
KR101294805B1 (en) 2-channel authentication method and system based on authentication application
KR100563544B1 (en) Method for authenticating a user with one-time password
KR20070029537A (en) Authentication system and method using individual unique code linked with wireless terminal
KR101699032B1 (en) Service providing system and method for payment using electronic tag
KR20150146061A (en) Voice recognition authentication system and method for providing authentication service using voice recognition
KR101681457B1 (en) 2-channel authentication system and method for a financial transfer
KR101534753B1 (en) Method of on-the-spot smartphone athentification
KR100875919B1 (en) Apparatus and method for providing personal information sharing service using signed callback UEL message

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
GRNT Written decision to grant