KR101794108B1 - A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server - Google Patents
A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server Download PDFInfo
- Publication number
- KR101794108B1 KR101794108B1 KR1020150144217A KR20150144217A KR101794108B1 KR 101794108 B1 KR101794108 B1 KR 101794108B1 KR 1020150144217 A KR1020150144217 A KR 1020150144217A KR 20150144217 A KR20150144217 A KR 20150144217A KR 101794108 B1 KR101794108 B1 KR 101794108B1
- Authority
- KR
- South Korea
- Prior art keywords
- image
- information
- authentication
- real name
- terminal
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/02—Banking, e.g. interest calculation or account maintenance
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3231—Biological data, e.g. fingerprint, voice or retina
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Finance (AREA)
- Accounting & Taxation (AREA)
- Signal Processing (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Development Economics (AREA)
- Economics (AREA)
- Marketing (AREA)
- Technology Law (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Life Sciences & Earth Sciences (AREA)
- Biodiversity & Conservation Biology (AREA)
- Biomedical Technology (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
According to another aspect of the present invention, there is provided a method of operating a terminal for providing financial services, the method comprising: searching image information stored in a memory; Identifying a blindness check image for non-face-to-face real name authentication of the financial service of a user from the image information; Monitoring access information corresponding to the identified blindness check identification image; And requesting additional authentication for providing the blindness verification image when an external access other than the application for non-face real name authentication of the financial service is confirmed from the access information.
Description
The present invention relates to a terminal for providing a financial service, a method for operating the terminal, a server for providing the financial service, and a method of operating the same, and more particularly to a terminal for providing a financial service for providing an Internet- An operation method thereof, a server for providing a financial service, and an operation method thereof.
In general, to open a bank branch and operate it, a specific space must be secured, and a safe box should be provided to store cash inside. A counter terminal, various auxiliary devices, and a communication network for managing and operating them are installed .
In addition, it should be equipped with office assistant to perform various financial services such as coin and bill counter, copier, scanner and various security equipment for safety and security.
As described above, in order to open a bank branch, not only a large space is required but also a high cost is required for installation of various equipments and services. Especially, due to competition with other financial institutions, There is a problem that not only the position preemption but also the cost burden for opening the branch becomes considerable.
To solve these problems, in recent years, along with the development of the IT industry, financial automation devices such as Internet banking and ATM (Automated Teller Machine) using terminals have been developed. As a result, customers visit their own bank Various financial services can be easily processed by using a computer, a portable terminal, or a financial automation device installed nearby.
In addition, through the simplification of such financial services, the Internet Primary Bank is emerging. Internet banking refers to banks that operate most of the banking business through the Internet, electronic media such as CDs and ATMs, without a few branches or branches, and the introduction of Internet banking has been implemented since mid 1990s It is spreading all over the world.
The interest in Internet banking has been stimulated by the development of IT technology and the increasing rate of internet usage, and has been triggered by management innovation and strategic factors such as cost reduction and service differentiation. Since its founding in the United States, SFNB (Security First Network Bank, 1995) has spread to the UK, Japan, EU, Hong Kong and Singapore.
As a result, it is expected that Internet professional banks will be attracting attention in Korea. Recently, there has been a move to reexamine the interpretation and practices of financial reforms that require confirmation of personal identification under the Financial Real Name Act.
However, the non - contact identification method of Internet banking requires a solution to solve or relax the legal constraints of the account opening or the burden of the customer, which poses the problem that there is no clear real name authentication system that can completely replace face - to - face verification.
Therefore, in order to solve the application of the financial real name system, it is necessary to establish a validated system capable of carrying out the real name authentication procedure through the Internet in place of the identity verification process, .
In recent years, there have been proposed methods of submitting a copy of a blindness check, video call, confirming when transferring an access medium, utilizing an existing account, utilizing results of other institutional verification, and verifying a plurality of personal information. However, And the plural methods must be complementary to each other.
In particular, the submission of a copy of the blindness check certificate is essential information required by law for opening an account, and it is basically necessary to enter the above plural methods. Accordingly, the customer must take a procedure by photographing or scanning the ID card to his / her terminal and submit it online, and by checking whether the ID card is authentic in the financial service providing server.
However, although the ID image information transmitted in the above process can be security-processed such as encryption, the ID image temporarily or semi-permanently stored in the volatile storage medium of the customer's terminal can be easily exposed to the outside.
In addition, there is a problem that the ID image can not be protected from access by other applications. For example, when a customer stores an ID image in a photo folder or the like in order to use the ID image for reuse or other authentication, it may be possible to load the ID image in another application.
Thus, there is also a need to solve the above security problems in order to establish a proven non-face authentication system for financial services.
SUMMARY OF THE INVENTION The present invention has been made to solve the above problems and it is an object of the present invention to provide a method of providing an Internet financial service capable of providing a financial service with enhanced memory security of a terminal, .
It is another object of the present invention to provide a verified system capable of reliably performing the real name authentication process even on the Internet in place of the identity verification process which must be confronted directly for a new transaction of an Internet bank.
According to another aspect of the present invention, there is provided a method of operating a terminal for providing financial services, the method comprising: searching image information stored in a memory; Identifying a blindness check image for non-face-to-face real name authentication of the financial service of a user from the image information; Monitoring access information corresponding to the identified blindness check identification image; And requesting additional authentication for providing the blindness verification image when an external access other than the application for non-face real name authentication of the financial service is confirmed from the access information.
According to another aspect of the present invention, there is provided an apparatus for providing a financial service, the apparatus comprising: a memory for storing an application for non-face real name authentication of the financial service; An image identification module for searching image information stored in the memory and for identifying a blindness check image for non-face real name authentication of the user's financial service from the image information; A monitoring module for monitoring access information corresponding to the identified blindness check identification image; And an authentication module for requesting additional authentication for providing the blindness check certificate image when an external access other than the application for the non-face real name authentication of the financial service is confirmed from the access information.
According to another aspect of the present invention, there is provided a server apparatus for providing a financial service, including: a communication unit for providing an application including the financial service to a terminal; And a real name verification unit that receives a real name verification proof image corresponding to user information from an application including the financial service and performs real name authentication, and the application including the financial service is stored in the memory of the terminal from the terminal Identifying the real name verification identification image for non-face real name authentication of the financial service of the user from the image information, monitoring the access information corresponding to the identified real name identification identification image, And one or more modules for requesting additional authentication for providing the blindness check certificate image when an external access other than the application for non-face real name authentication of the financial service is confirmed.
According to another aspect of the present invention, there is provided an apparatus for providing an application including the financial service to a terminal. And a real name verification unit that receives a real name verification proof image corresponding to user information from an application including the financial service and performs real name authentication, and the application including the financial service is stored in the memory of the terminal from the terminal Identifying the real name verification identification image for non-face real name authentication of the financial service of the user from the image information, monitoring the access information corresponding to the identified real name identification identification image, And one or more modules for requesting additional authentication for providing the blindness check certificate image when an external access other than the application for non-face real name authentication of the financial service is confirmed.
According to another aspect of the present invention, there is provided a computer program for use in a computer readable recording medium storing a computer program for causing a computer to execute the method.
According to an embodiment of the present invention, it is possible to identify the user's blindness check image from the image information stored in the memory of the terminal performing non-face real name authentication, and to monitor the access information corresponding to the identified blindness check identification image When the external access other than the application for non-face real name authentication of the financial service is confirmed from the access information, additional authentication for providing the real name verification proof image is requested, thereby realizing a real name authentication service with enhanced memory security .
Accordingly, not only can a real name authentication service on a financial service with enhanced security of a terminal be provided, but also a self-name authentication procedure can be relieved through the Internet It is possible to build a proven system that can perform.
1 is a conceptual diagram schematically showing an overall system according to an embodiment of the present invention.
2 is a block diagram illustrating a financial service providing server according to an embodiment of the present invention.
3 is a block diagram for explaining a terminal according to an embodiment of the present invention in more detail.
4 is a ladder diagram illustrating system operation in accordance with an embodiment of the present invention.
5 is a ladder diagram illustrating system operation according to another embodiment of the present invention.
6 is a flowchart illustrating an operation of a terminal according to an embodiment of the present invention.
7 to 13 are views showing interfaces output through a display according to the operation of a terminal according to an embodiment of the present invention.
The following merely illustrates the principles of the invention. Thus, those skilled in the art will be able to devise various apparatuses which, although not explicitly described or shown herein, embody the principles of the invention and are included in the concept and scope of the invention. Furthermore, all of the conditional terms and embodiments listed herein are, in principle, only intended for the purpose of enabling understanding of the concepts of the present invention, and are not to be construed as limited to such specifically recited embodiments and conditions do.
It is also to be understood that the detailed description, as well as the principles, aspects and embodiments of the invention, as well as specific embodiments thereof, are intended to cover structural and functional equivalents thereof. It is also to be understood that such equivalents include all elements contemplated to perform the same function irrespective of the currently known equivalents as well as the equivalents to be developed in the future, i.e., the structure.
Thus, it should be understood that all flow diagrams, state transitions, pseudo code, etc. are representative of various processes that may be substantially represented on a computer-readable medium and executed by a computer or processor, whether the computer or processor is explicitly shown .
The functions of the various elements shown in the figures, including the functional blocks depicted in the processor or similar concept, may be provided by use of dedicated hardware as well as hardware capable of executing software in connection with appropriate software. When provided by a processor, the functions may be provided by a single dedicated processor, a single shared processor, or a plurality of individual processors, some of which may be shared.
BRIEF DESCRIPTION OF THE DRAWINGS The above and other objects, features and advantages of the present invention will become more apparent from the following detailed description of the present invention when taken in conjunction with the accompanying drawings, in which: There will be. In the following description, well-known functions or constructions are not described in detail since they would obscure the invention in unnecessary detail.
Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.
First, the terms used in the specification of the present invention will be briefly defined, and then an embodiment of the present invention will be described.
The term " terminal "described in this specification may include a mobile phone, a smart phone, a laptop computer, a digital broadcast terminal, a PDA (Personal Digital Assistants), a PMP (Portable Multimedia Player) The present invention is not limited thereto, and may be various devices capable of user input and information display.
Also, the term " financial service providing server "may mean a server and a device system for processing information related to financial transactions. For example, the financial service provision server may include a bank server for relaying financial accounts, a van server for relaying financial card electronic settlement, a credit card server for processing payment approval for credit card transactions, Various types of servers may be involved. As described above, the financial service providing server may include an Internet bank that operates most of the banking business through the Internet and electronic media such as CD and ATM without a few branches or sales offices. Depending on the specific function, the actual financial transaction function and other additional functions may be separated into separate server types.
1 is a conceptual diagram schematically showing an overall system according to an embodiment of the present invention.
Referring to FIG. 1, an overall system according to an embodiment of the present invention includes a financial
The financial
The financial
In addition, the financial
In order to confirm the real name and service of the financial service, the financial
For example, the terminal 200 may access an affiliate site on the user's Internet or an open market such as an Android market or an app store, download a financial service application, enter a user's information, It can be downloaded from the web after the authentication process.
At this time, uploading, updating information or other management of the financial service application may be performed in the financial
Meanwhile, the terminal 200 performs wireless communication through a general mobile communication network and transmits / receives at least one of various messages such as a Short Message Service (SMS), a Multimedia Messaging Service (MMS) Or a cellular phone. In addition, the terminal 200 may include a personal digital assistant (PDA) that can access the mobile communication network and transmit and receive data to and from an Internet Protocol (IP) network such as the Internet.
The terminal 200 according to the embodiment of the present invention can be connected to the financial
In particular, the terminal 200 can perform an account opening application through a financial service application. The terminal 200 can input application information according to user input on the screen and input the real name authentication information to the financial
In particular, according to embodiments of the present invention, most of the processing procedures of financial services can be performed based on non-face authentication. In order to ensure reliability, separate authentication information for non-face authentication according to an embodiment of the present invention may be required.
Accordingly, the application information may include user information corresponding to at least one of a name, a resident number, and an address, and the real name authentication information may include one or more authentication information for confirming the user's real name.
In particular, in the case of an Internet professional banking service requiring non-face authentication, the real name authentication information may include information on a plurality of authentication means. Accordingly, the authentication information may include, for example, a blindness check image (front and back) such as a user's identification card, and may include image information of a user's face, real name verification affiliation information, And may further include one or more of the other account information for the account.
Then, the financial
More specifically, when the blindness check certificate image is received from the terminal 200, the financial
Further, for example, the financial
Meanwhile, when the affiliated organization information is received from the terminal 200, the financial
When the account information is received from the terminal 200, the financial
As the real name authentication is completed, the financial
According to the embodiment of the present invention, the terminal 200 can perform security processing on the blindness check image stored in the memory. The security processing may be executed according to the above-described financial service application or the OS itself of the terminal 200. [
For security processing, the terminal 200 searches the image information stored in the memory, identifies the user's real name verification image for non-face real name authentication of the user's financial service from the image information, Monitor the access information corresponding to the image and request an additional authentication for providing the blindness check image when an external access other than the application for non-face real name authentication of the financial service is confirmed from the access information.
Here, the additional authentication may include authentication of at least one of a password for biometric authentication or biometric information, and the biometric information may include at least one of fingerprint information, iris information, grammar information, vein information, and DNA information . In this specification, fingerprint information is described as an example of biometric information, but the biometric information of the present invention is not limited thereto and may include other biometric information or a combination of biometric information.
The specific configuration and operation of the terminal 200 will be described later.
2 is a block diagram illustrating a financial service providing server according to an embodiment of the present invention.
2, the financial
The controller 110 generally controls the operation of each component and the execution of the functions to provide financial services of the financial
The communication unit 120 enables wireless communication between the financial
On the other hand, the financial
In particular, when the
Accordingly, the real
As described above, the authentication information for real name verification may include a plurality of authentication means. The plurality of authentication means may include at least two or more of, for example, a blindness certificate image, image information, affiliation information, or other account information.
The real
More specifically, the real
For example, the real
If the authentication information further includes image information of the user's face, the real
In addition, when the user's video call information is included in the authentication information for non-face authentication, the real
On the other hand, when the affiliated organization information is received from the terminal 200, the real
When the account information is received from the terminal 200, the real
Upon completion of the real name authentication of the real
Meanwhile, the
Meanwhile, the storage unit 160 may store information to be processed in each component and a financial service application. The storage unit 160 may be implemented as a random access memory (RAM), a flash memory, a ROM (Read Only Memory), an EPROM (Erasable Programmable ROM), an EEPROM (Electronically Erasable and Programmable ROM) Or the like, as well as a detachable type storage device such as a USB memory.
3 is a block diagram for explaining a terminal according to an embodiment of the present invention in more detail.
3, a terminal 200 according to an embodiment of the present invention includes a control unit 210, a communication unit 220, a
The communication unit 220 includes at least one module that enables wireless communication between the terminal 200 and the financial
The communication unit 220 includes a wired / wireless communication module for wirelessly or wiredly communicating with a local area network (LAN) and an Internet network, a USB interface module for communicating via a USB (Universal Serial Bus) (Short-range wireless communication module) that performs a communication function according to the 3GPP (3rd Generation Partnership Project), LTE (Long Term Evolution), NFC (Near Field Communication), Wi- And a communication module for communicating with the communication network.
On the other hand, the input unit 250 receives a user input for operating the terminal 200. In particular, the input unit 250 may receive a user input for executing a financial service application interface, and the user inputs application information and authentication information for applying for a financial service to the input unit 250 through an operation corresponding to the interface .
Here, the input unit 250 may include various types of buttons, a touch sensor that receives a touch input to the display unit 260, a proximity sensor that receives motion that is not directly connected to the surface of the display unit 260, And a microphone for receiving the microphone. However, the present invention is not limited thereto and may be implemented in any form capable of receiving user input.
The financial service processing unit 240 processes an application operation for providing a financial service. The financial service processing unit 240 can perform processing of application information for providing a financial service, confirmation of authentication information, encryption, and communication between the financial
In particular, the financial service processing unit 240 may display, through the display unit 260, an interface for receiving user information for providing the financial service through the input unit 250.
In addition, the financial service processing unit 240 may receive a user input corresponding to the authentication information through the input unit 250. [ In particular, the financial service processing unit 240 may photograph the blindness check through the camera 281 or load the blindness check image stored in the
In addition, the financial service processing unit 240 may receive the image information of the user as well as the real name verification proof image through the camera 281 in response to the user information. In this case, the financial service processing unit 240 may process the image information or the video call information of the user to perform the real name verification. To this end, the financial service processing unit 240 transmits the user information, the image information, and the blindness check image to the financial
Meanwhile, the financial service processing unit 240 may store in the
To this end, the financial service processing unit 240 includes a secure processing corresponding to the blindness check stored in the
The image identification module 241 searches for image information stored in the memory and identifies the blindness check image for non-face real name authentication of the user's financial service from the image information.
More specifically, the image identification module 241 detects the degree of similarity between the image information stored in the
In addition, the image identification module 241 determines whether the feature information of the face image, the text information (name, resident registration number, address, issuance date, issuing agency) is extracted from the image determined as the real name verification proof image or the fingerprint information is extracted And can more clearly discriminate whether or not the image is a blindness verification image.
Then, the monitoring module 242 monitors the access information corresponding to the identified blindness check certificate image.
In particular, the monitoring module 242 may reside in the BACKGROUND memory and monitor the access information corresponding to the blindness verification image even when the financial service application is not operating in the foreground.
Accordingly, the monitoring module 242 can check whether or not another external application accesses the real name verification proof image file from the information processed by the controller 210, based on the related information. The external application may be, for example, an image editing application, a file management application, or an image sharing application.
To this end, the monitoring module 242 periodically checks the operation information of another external application on the OS processed by the control unit 210, and monitors the access information including the request for the file path corresponding to the real name verification proof image can do.
Then, the authentication module 243 requests additional authentication for providing the blindness check certificate image if unauthenticated external access other than the application for the non-face real name authentication of the financial service is confirmed from the access information.
The authentication module 243 may request the additional authentication and block the provision of the blindness check image to the external application. Then, the authentication module 243 displays an additional authentication request message through the display unit 250, and can provide an image to the external application only when the user's additional authentication is completed.
In order to provide and block images for the external application, the financial service processing unit 240 may further include an encryption unit and a decryption unit. The encryption unit of the financial service processing unit 240 may encrypt the real name verification proof image with the encryption key when the real verification name image is identified from the image information.
When the authentication is completed in the authentication module 243, the decryption unit of the financial service processing unit 240 may decrypt the real name verification proof image with the decryption key corresponding to the encryption key.
Accordingly, if the additional authentication of the authentication module 243 is not completed, the encrypted image can be provided to the external application, and if the additional authentication is completed, the decrypted image can be provided to the external application.
In addition, the authentication module 243 may comprise one or more physical or software authentication means for further authentication.
For example, the authentication module 243 may include a password authentication unit for software authentication. Accordingly, the user can input the additional authentication password to complete the additional authentication.
In addition, the authentication module 243 may include biometric authentication means for the additional authentication. Accordingly, the biometric information corresponding to the user may be stored in the
The financial service may include an Internet banking account opening service, and the image identification module 241, the monitoring module 242, and the authentication module 243 may be included in an application for non-face real name authentication , The application for the non-face real name authentication may be installed in the financial service providing application for the Internet banking account opening service.
According to the operations of the financial service processing unit 240, the image identification module 241, the monitoring module 242, and the authentication module 243, the blindness check image information for non-face real name authentication can be monitored and protected in real time , And can provide a financial service that the user can feel relieved upon request for additional authentication and encryption / decryption.
4 is a ladder diagram illustrating system operation in accordance with an embodiment of the present invention.
Referring to FIG. 4, the financial
The terminal 200 installs an application through the control unit 210 and executes an application for providing a financial service according to an input to the input unit 250 (S103).
Then, the user creates and inputs financial service application information for using the financial service through the input unit 250 of the terminal 200 (S105), and inputs a real name verification certificate for real name authentication (S107).
Here, the input of the blindness check certificate may include an input for bringing in a user's previously stored blindness check certificate image or a new photograph. The control unit 210 controls the camera 281 to display the ID card image.
In step S109, the terminal 200 determines whether the blindness check and application information are normally input through the financial service processing unit 240. If it is confirmed in step S109, the terminal 200 provides a financial service through the secure channel using the communication unit 220 And sends the application information and the proof of real name confirmation to the device 100 (S111).
Then, the financial
Thereafter, the financial
The financial
5 is a ladder diagram illustrating system operation according to another embodiment of the present invention.
5, the financial
Similarly, the terminal 200 installs an application through the control unit 210 and executes an application for providing a financial service according to an input to the input unit 250 (S203). The user creates and inputs financial service application information for use of financial services through the input unit 250 of the terminal 200 (S105), and inputs a real name verification certificate for real name authentication (S207). In step S219, the terminal 200 checks whether the blindness check and application information are normally input through the financial service processing unit 240.
When the normal input is confirmed, the terminal 200 receives the image information of the user's face through the camera 181 (S211). The input image information is transmitted to the financial
Here, the image information may include image and audio information for video communication. In the financial
Thereafter, the financial
The financial
6 is a flowchart illustrating an operation of a terminal according to an embodiment of the present invention.
Referring to FIG. 6, a terminal 200 according to an embodiment of the present invention first searches image information stored in a memory through an image identification module 241 (S301).
Then, the terminal 200 extracts the blindness check identification information from the image information through the image identification module 241 (S303), and determines whether the blindness check certificate is detected (S305).
Here, the blindness identification check identification information may include text information or feature information extracted from image information. Then, the image identification module 241 can check whether or not the blindness verification mark is detected based on the text information or the feature information. For example, when an identification card such as a 'national ID card' is detected in the text information, the image identification module 241 may determine that the blindness check has been detected.
In addition, the blindness proof image may include an image of the front and back of the identification card. Accordingly, the image identification module 241 may check whether or not the image is a blindness confirmation certificate, if the image is a predetermined value or more, according to the similarity between the image of the front side or the back side of the ID card sample and the stored images.
Thereafter, when the blindness check certificate is detected, the terminal 200 monitors the access information corresponding to the blindness check certificate image through the monitoring module 242 (S307).
If the access information of the external application is confirmed in the monitoring module 242 (S309), the authentication module 243 outputs a message requesting additional authentication through the display unit 260 (S311).
In step S313, the financial service processing unit 240 of the terminal 200 provides a normal image of the blindness check image to the external application in step S315. (S317).
7 to 13 are views showing interfaces output through a display according to the operation of a terminal according to an embodiment of the present invention.
7 shows an
7, the user can write the financial service application information including the user information through the
FIG. 8 shows the identification confirmation
9, the user can select a previously stored blindness check image through the
10 to 13 illustrate an interface operation of the terminal 200 when an external application accesses a blindness certificate image photographed or already stored according to the above process.
10, the monitoring module 242, when displayed for image sharing or the like in the
11, when the user selects the
Accordingly, as shown in FIG. 12, when the additional authentication is completed, the normal image of the
However, as shown in FIG. 13, when the additional authentication fails, the authentication module 243 of the terminal 200 replaces the encrypted blindness check image or the
According to such a configuration, the management and security processing of the blindness check image for non-face authentication can be automatically performed, and even when the actual financial service application is not executed, the restriction of access from other applications can be processed It can provide safe financial services.
The method according to the present invention may be implemented as a program for execution on a computer and stored in a computer-readable recording medium. Examples of the computer-readable recording medium include a ROM, a RAM, a CD- , A floppy disk, an optical data storage device, and the like.
The computer readable recording medium may be distributed over a networked computer system so that computer readable code can be stored and executed in a distributed manner. And, functional programs, codes and code segments for implementing the above method can be easily inferred by programmers of the technical field to which the present invention belongs.
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, It should be understood that various modifications may be made by those skilled in the art without departing from the spirit and scope of the present invention.
100: Financial service provider
200: terminal
300: authentication server
400: Financial institution DB
Claims (16)
When the financial service processing unit is installed, searching image information created and stored in the memory by the financial service processing unit or another external application;
Identifying a blindness check image for non-face-to-face real name authentication of the financial service of a user from the image information;
Encrypting the identified blindness check certificate image and managing related information including file position information and photographing time information corresponding to the real name verification check image;
Monitoring access information corresponding to the identified blindness check image based on the related information; And
Requesting additional authentication for providing the blindness verification image when the access of the external application other than the application for the non-face real name authentication of the financial service is confirmed from the access information; And
And decrypting and providing the blindness verification image with the external application if the additional authentication is confirmed,
Wherein the monitoring of the access information comprises:
Monitoring operation information of the other external application on the OS processed in the control unit of the terminal through the monitoring module in the background; And
And checking the access information of the external application including a request for a file path corresponding to the real name verification proof image from the operation information,
Wherein the step of requesting further authentication comprises:
When the access of the external application is confirmed through the monitoring module, the authentication module displays the message for the additional authentication on the interface of the external application, and prevents the providing of the blindness check image to the external application ≪ / RTI >
A method of operating a terminal for providing financial services.
Wherein the additional authentication includes biometric authentication,
Further comprising the step of previously storing the biometric information corresponding to the user
A method of operating a terminal for providing financial services.
Wherein the biometric information includes at least one of fingerprint information, iris information, grammar information, DNA information, and vein information
A method of operating a terminal for providing financial services.
Further comprising encrypting the real name verification token image with a preset encryption key if the real name verification token image is identified from the image information
A method of operating a terminal for providing financial services.
Wherein the providing step comprises:
And decrypting the real name verification proof image with a decryption key corresponding to the encryption key to provide the decrypted image when the additional authentication is completed,
Providing the external application with any of the encrypted blindness check image, the substitute image or the masked blindness check image if the additional authentication fails
A method of operating a terminal for providing financial services.
Wherein the identifying step comprises detecting the real name verification evidence image based on textual information extracted from the image information
A method of operating a terminal for providing financial services.
Wherein the identifying step includes the step of detecting the real name verification proof image when the degree of similarity to the real name verification proof sample is greater than or equal to a predetermined value based on the feature information extracted from the image information
A method of operating a terminal for providing financial services.
A memory for storing a financial service processing application and other external applications for non-face real name authentication of the financial service;
Searching for image information created and stored in the memory by the financial service processing application or the other external application, and identifying an image identification < RTI ID = 0.0 > identification < / RTI >module;
A management module for encrypting the identified blindness check certificate image and managing related information including file position information and photographing time information corresponding to the real name verification check image;
A monitoring module that monitors access information corresponding to the identified blindness check image based on the related information;
Requesting additional authentication for providing the blindness check identification image when the access of the external application other than the application for non-face real name authentication of the financial service is confirmed from the access information, And an authentication module for decrypting and providing the blindness verification image with an external application,
The monitoring module monitors the operation information of the other external application on the OS processed in the controller of the terminal in the background,
From the operation information, access information of the external application including a request for a file path corresponding to the real name verification proof image,
Wherein the authentication module displays the message for the additional authentication on the interface of the external application when the access of the external application is confirmed through the monitoring module and provides the image of the real name verification image to the external application Blocking
A terminal for providing financial services.
Wherein the additional authentication includes biometric authentication,
Wherein the memory stores biometric information corresponding to the user in advance,
Wherein the biometric information includes at least one of fingerprint information, iris information, grammar information, DNA information, and vein information
A terminal for providing financial services.
Further comprising an encrypting unit for encrypting the real name verification proof image with the encryption key if the real name verification proof image is identified from the image information
A terminal for providing financial services.
Further comprising a decryption unit for decrypting the real name verification proof image with a decryption key corresponding to the encryption key and providing the decrypted image when the additional authentication is completed in the authentication module,
Wherein the authentication module provides any one of the encrypted blindness check image, the substitute image, or the masked blindness check image to the external application when the additional authentication fails
A terminal for providing financial services.
A user input unit for receiving user information for providing the financial service;
A camera receiving the real name verification check image and the user image information corresponding to the user information; And
And transmits the user information, the image information, and the blindness check image to the server via a secure channel, and in response to the transmission of the user information, the image information, and the blindness check image, Further comprising a communication unit for receiving a message
A terminal for providing financial services.
The financial service includes an Internet banking account opening service,
Wherein the image identification module, the monitoring module and the application for non-face real name authentication of the financial service are included in the application for the Internet banking account opening service
A terminal for providing financial services.
Providing an application including the financial service to a terminal; And
And performing real name authentication by receiving a real name verification proof image corresponding to user information from an application including the financial service,
Wherein the application including the financial service searches image information created and stored in the memory of the terminal by an application including the financial service or another external application and extracts from the image information a non- Encrypts the identified real name verification proof image, manages related information including file position information and photographing time information corresponding to the real name verification proof image, Wherein when an access to an external application other than the application for non-face-real-name authentication of the financial service is confirmed from the access information, based on the access information corresponding to the identified real- Additional for the provision of The request and, if the supplementary authentication, and includes one or more modules provided by decoding the real name check mark image to the external application,
Wherein the application including the financial service monitors the operation information of the other external application on the OS processed by the control unit of the terminal through the monitoring module in the background and extracts, from the operation information, And displays a message for the additional authentication on the interface of the external application through the authentication module when the access of the external application through the monitoring module is confirmed, Together, blocking the provision of the blindness proof image to the external application
A method of operating a server that provides financial services.
A communication unit for providing an application including the financial service to a terminal; And
And a real name confirmation unit for receiving a real name verification proof image corresponding to user information from an application including the financial service and performing real name authentication,
Wherein the application including the financial service searches image information created and stored in the memory of the terminal by an application including the financial service or another external application and extracts from the image information a non- Encrypts the identified real name verification proof image, manages related information including file position information and photographing time information corresponding to the real name verification proof image, Wherein when an access to an external application other than the application for non-face-real-name authentication of the financial service is confirmed from the access information, based on the access information corresponding to the identified real- Additional for the provision of And it requires, in the case where the supplementary authentication, and comprises, characterized in that it comprises one or more modules provided by decoding the real name check mark image to the external application,
Wherein the application including the financial service monitors the operation information of the other external application on the OS processed by the control unit of the terminal through the monitoring module in the background and extracts, from the operation information, And displays a message for the additional authentication on the interface of the external application through the authentication module when the access of the external application through the monitoring module is confirmed, Together, blocking the provision of the blindness proof image to the external application
A server device that provides financial services.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150144217A KR101794108B1 (en) | 2015-10-15 | 2015-10-15 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150144217A KR101794108B1 (en) | 2015-10-15 | 2015-10-15 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20170044468A KR20170044468A (en) | 2017-04-25 |
KR101794108B1 true KR101794108B1 (en) | 2017-11-06 |
Family
ID=58703580
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020150144217A KR101794108B1 (en) | 2015-10-15 | 2015-10-15 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR101794108B1 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102234257B1 (en) * | 2020-06-03 | 2021-03-30 | 주식회사 카카오뱅크 | Banking service application using unconscious authentication and method for providing the same service |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102160615B1 (en) * | 2020-06-15 | 2020-09-28 | 주식회사 볼드코퍼레이션 | System for managing untact business and method thereof |
-
2015
- 2015-10-15 KR KR1020150144217A patent/KR101794108B1/en not_active Application Discontinuation
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102234257B1 (en) * | 2020-06-03 | 2021-03-30 | 주식회사 카카오뱅크 | Banking service application using unconscious authentication and method for providing the same service |
Also Published As
Publication number | Publication date |
---|---|
KR20170044468A (en) | 2017-04-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP6648110B2 (en) | System and method for authenticating a client to a device | |
TWI508007B (en) | Secure electronic payment system and process | |
US10432620B2 (en) | Biometric authentication | |
US20170061441A1 (en) | Secure on device cardholder authentication using biometric data | |
WO2019032113A1 (en) | Biometric verification process using certification token | |
KR101856038B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
WO2018234882A1 (en) | A system and method for conducting a transaction | |
CN111742314A (en) | Biometric sensor on portable device | |
KR102594999B1 (en) | System and method for non-face-to-face identification kyc solution having excellent security | |
EP3186739A1 (en) | Secure on device cardholder authentication using biometric data | |
KR101831158B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
KR101935817B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
KR101813950B1 (en) | An automated teller machine and a method for operating it | |
KR101794108B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
JP2017173987A (en) | Transaction reservation method, transaction reservation device, transaction reservation system, and program | |
KR20200060741A (en) | Device and method for emulating online user authentication process in offline operation | |
KR101742064B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
US20190095912A1 (en) | Pre-approval financial transaction providing system and method therefor | |
CN114207578A (en) | Mobile application integration | |
KR101720273B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
FR3058814B1 (en) | METHOD FOR PROCESSING TRANSACTIONAL DATA, COMMUNICATION TERMINAL, CARD READER AND CORRESPONDING PROGRAM. | |
KR20190052585A (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
KR101813534B1 (en) | An automated teller machine and a method for operating it | |
TWM603166U (en) | Financial transaction device and system with non-contact authentication function | |
WO2017001431A1 (en) | A method of generating a bank transaction request for a mobile terminal having a secure module |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
E902 | Notification of reason for refusal |