KR102600490B1 - An apparatus for providing payment services of a distributed token for encrypted data of payment information to be used only by a specific franchisee and a method for operating it - Google Patents

Abstract

A method of operating a token processing device according to an embodiment of the present invention includes receiving a request for issuing a token that can only be used at a first affiliated store from a user terminal or payment terminal; Encrypting the payment method data included in the token issuance request using a first encryption key calculated using affiliated store information and encryption counter information of the first affiliated store; generating a decentralized payment token for the first affiliated store-only transaction based on the first portion of the encrypted payment method data and the encryption counter information; And providing the decentralized payment token to the user terminal or the payment terminal.

Description

A payment service providing device that provides distributed token payment exclusively for merchants of payment method data and a method of operating the same IT}

The present invention relates to a distributed token processing device and a method of operating the same. More specifically, the present invention relates to a payment service providing device that provides distributed token payment for affiliated stores of payment method data and a method of operating the same.

As the electronic payment infrastructure has expanded, credit payment services based on card payments such as credit cards, check cards, and debit cards (hereinafter referred to as “credit cards”) have become common. In the credit payment service, a user purchases a product or service at an affiliated store using a card payment and then pays the usage fee for the product or service to the card company on the payment date, and the affiliated store receives the sales price of the product or service from the card company, etc. It refers to a payment method using electronic payment infrastructure.

The system that provides the credit payment service is comprised of a number of card terminals installed in a number of affiliated stores, and Value Added Network (VAN), which provides payment agency services related to card payments between a number of affiliated stores and card companies. The server (hereinafter referred to as “payment agency server”) is configured by connecting the server of the card company that issued the credit card to the user through a communication network. The VAN refers to a payment network for payment transactions between card terminals and card company servers.

The payment system using this electronic payment network has brought about innovative improvements in the convenience and speed of payment, but it continues to cause damage due to fraudulent use of card information data and damage due to personal information leakage. To solve this problem, electronic payment methods that can maintain security due to hacking of communication networks, etc. are being proposed.

Among these, the token payment method issues a virtual temporary token, valid for a certain period of time, from the payment company's server to the user's terminal in response to the user's unique information or card information, and when a payment request using this temporary token is received by the server, , the payment company server may check the card information mapped to the temporary token and request card payment to the card company server.

Since this token payment method uses temporarily issued virtual random tokens, it has the advantage that personal information cannot be identified even if it is leaked.

However, since temporarily issued tokens are also a payment method used for payment, an attacker hacks the token itself before payment or the payment method data itself in the payment request containing the token and uses it for payment at other affiliated stores. When a request is made or a duplicate payment is made, there is a problem that it is very difficult for the payment company's server to distinguish between them, and there is currently no real countermeasure.

In other words, it is difficult for the payment company server to determine the authenticity of the payment request even if the issued token is used at an affiliated store that the user did not intend, and going through the process of re-confirming this will not only make the payment more complex and delay, but also cause system implementation and There is a problem that increases the cost of building infrastructure, and there is a problem that can only be solved by providing receivables or damage processing at the point of post-settlement rather than determining it in real time.

Furthermore, the current token payment method is a method of generating virtual random tokens and mapping them with actual personal information. Personal information itself, such as card information, must be fully retained by the payment company's server to be confirmed by matching it with the virtual random token. Therefore, no matter how virtual random tokens are used, there is a fundamental problem that card information and customer information will inevitably be leaked if the payment company's server database itself is hacked.

The present invention was created to solve the problems described above, and the encrypted data of the payment method data for a specific affiliated store is encrypted through specialized encryption processing from the payment method data itself, such as card information, rather than a virtual random token. By creating a token and issuing it to replace a payment method by configuring it with decentralized token information, not only can the leakage of personal information such as card information be prevented, but it can also be used at other affiliated stores simply by verifying the decentralized token information itself. You can quickly check whether it is reused, leaked, hacked, etc., and only the remaining decentralized token information is stored on the payment company's server itself, preventing the complete card information from being confirmed even if the payment company's server is hacked. Processed payment method data The purpose is to provide a payment service providing device and operation method that provides distributed token payments exclusively for affiliated stores.

A method according to an embodiment of the present invention for solving the above-mentioned problem is a method of operating a payment service providing device, wherein a request is made for issuing a decentralized token that can only be used at a first affiliated store corresponding to the payment terminal from a payment terminal. receiving; Obtaining a decentralized payment token using a first part of payment method encryption data in which the payment method information included in the token issuance request is encrypted exclusively for the first affiliated store using hardware security module equipment; Transmitting the decentralized payment token full text for the first affiliated store-only transaction including the decentralized payment token to the payment terminal; Receiving a full text of a payment approval request using the decentralized payment token from the payment terminal; Obtaining payment method information obtained by decrypting the payment method encryption data using the distributed payment token and affiliated store identification information in the payment approval request telegram; and processing a payment approval request to the payment company server using the payment method information.

In addition, a device according to an embodiment of the present invention for solving the above-described problem is a payment service providing device that receives a request for issuance of a decentralized token that can only be used at a first affiliated store corresponding to the payment terminal from a payment terminal. Ministry of Communications; And obtaining a decentralized payment token using the first part of the payment method encryption data in which the payment method information included in the token issuance request is encrypted exclusively for the first affiliated store using hardware security module equipment, and the decentralized payment token is obtained. A distributed payment token management unit that transmits the full text of the distributed payment token for the first merchant-only transaction to the payment terminal, wherein the communication unit requests payment approval using the distributed payment token from the payment terminal. Receiving the telegram, the payment approval processing unit uses the decentralized payment token and affiliated store identification information in the payment approval request telegram to obtain payment method information obtained by decrypting the payment method encryption data, and obtains the payment method information. Processes payment approval requests to the server of the payment company used.

In addition, the method according to an embodiment of the present invention for solving the problems described above can be stored as a program stored in a computer-readable medium for executing the method on a computer and a recording medium on which the program is recorded. .

According to an embodiment of the present invention, the key serial information and encryption counter information issued in response to the merchant information of the first affiliated store are combined with the payment method data included in the token issuance request, and the affiliated store information and encryption counter of the first affiliated store. Encryption is performed using a first encryption key calculated using the information, and a decentralized payment token for the first merchant-only transaction is generated and distributed based on the first part of the encrypted card information and the encryption counter information. , a secure payment service that can be used only at dedicated affiliated stores, prevents reuse of the data itself, and processes the entire card number, etc., from being stored on the payment company's server, can be provided quickly without increasing the cost of building a separate infrastructure.

Accordingly, according to an embodiment of the present invention, card information encryption data exclusive to a specific affiliated store is generated according to specialized encryption processing from the payment method data itself rather than a virtual random token, and the card information is composed of decentralized token information. By issuing it to replace the payment method, it is possible to prevent the leakage of personal information such as card information, as well as verifying the decentralized token information itself to determine whether it is used at other affiliated stores, whether it is reused, whether it has been leaked, whether it has been hacked, etc. can be quickly confirmed at the same time, and only the remaining decentralized token information is stored on the payment company server itself, preventing complete card information from being confirmed even if the payment company server is hacked. A device for providing payment services using decentralized tokens and its operating method. can be provided.

1 is a conceptual diagram schematically showing the entire system according to an embodiment of the present invention.
Figure 2 is a block diagram illustrating in more detail a token processing device according to an embodiment of the present invention.
Figure 3 is a flowchart for explaining the token provision operation of the token processing device according to an embodiment of the present invention.
Figure 4 is a diagram schematically explaining the distributed tokenization processing process according to an embodiment of the present invention.
Figure 5 is a flowchart for explaining the decryption operation of the token processing device according to an embodiment of the present invention.
Figure 6 is a diagram schematically explaining the distributed token-based decryption processing process according to an embodiment of the present invention.
Figure 7 is a block diagram illustrating in more detail a payment service providing server according to an embodiment of the present invention.
Figure 8 is a ladder diagram for explaining a distributed payment token-based payment processing process according to an embodiment of the present invention.
Figure 9 is a ladder diagram to explain the management process of decentralized payment tokens according to an embodiment of the present invention.

Hereinafter, embodiments of the present invention will be described in detail with reference to the attached drawings.

The above-described objects, features and advantages of the present invention will become more apparent through the following detailed description in conjunction with the accompanying drawings. Hereinafter, preferred embodiments according to the present invention will be described in detail with reference to the attached drawings. Like reference numerals refer to like elements throughout the specification. Additionally, if it is determined that a detailed description of a known function or configuration related to the present invention may unnecessarily obscure the gist of the present invention, the detailed description will be omitted.

Hereinafter, the server device and terminal device related to the present invention will be described in more detail with reference to the drawings. The suffixes “module” and “part” for components used in the following description are given or used interchangeably only for the ease of preparing the specification, and do not have distinct meanings or roles in themselves.

First, the terms used in the specification of the present invention will be briefly defined, and then an embodiment of the present invention will be described.

“Payment terminals” described in this specification include POS terminals, computers, mobile phones, smart phones, laptop computers, digital broadcasting terminals, PDAs (Personal Digital Assistants), PMPs (Portable Multimedia Players), and navigation devices. etc. may be included, but the present invention is not limited thereto and may be a variety of devices capable of user input and information display.

In addition, "relay server" refers to a VAN company server that relays electronic payment by credit card as an example, but various types of servers related to electronic payment by credit card may also fall under this, depending on the specific function. It is also possible to separate the actual payment relay function and other additional functions into a separate server.

Figure 1 is a diagram showing the entire system according to an embodiment of the present invention.

Referring to Figure 1, the entire system according to an embodiment of the present invention may be configured to include a token processing device 100, a relay server 200, a payment terminal 300, and a card company server 500, and the token processing device 100 may be configured to include or be connected to a hardware security module (HSM) device 101, and the payment terminal 300 may be configured to include or be connected to a card reader module 310.

Referring to FIG. 1, the relay server 200 is disclosed as an example of a financial server that relays and processes the payment service of the card company server 500, and is a van (Value Added) that provides a payment agency service in an electronic payment system using a credit card. Network: VAN) The company's server may be an example.

Here, the “financial server” may mean a server that processes information related to financial transactions. For example, financial servers include bank servers that relay transactions between financial accounts, VAN company servers that relay financial card electronic payments, card company servers that process payment approval for credit card transactions, and various other types of servers. These may apply. Additionally, depending on the specific function, there may be a form where the actual financial transaction function and other additional functions are separated into a separate server.

Typically, the card reader module 310 and the payment terminal 300 can be configured separately, but are often combined, and this is also commonly referred to as a 'POS terminal' or POS. However, hereinafter, a form in which all or part of the card reader module 310 is combined with the payment terminal 300 may also be referred to as the payment terminal 300.

First, the card reader module 310 is a device for acquiring payment method data including a card number, for example, a magnetic strip reader (MSR) that reads card information from a magnetic card, an integrated circuit (IC) card, etc. It can be a variety of devices, such as an IC card reader that reads card information, an NFC reader that receives card information using short-distance wireless communication, or a barcode reader that reads card information using a barcode.

In addition, the card reader module 310 can obtain payment method data pre-encrypted with a preset card information encryption key in response to the relay server 200, and the encrypted payment method data is transmitted to the relay server 200 holding the private key. An example may be card information that has been pre-encrypted using a public key method to be decrypted only in .

In addition, the payment terminal 300 is a decentralized payment method for use as a payment method exclusively for the first affiliated store corresponding to the payment terminal 300 when pre-encrypted payment method data is obtained through the card reader module 310. A request is made to the relay server 200 to issue a payment token. Here, the request for decentralized payment token issuance by the payment terminal 300 may include the pre-encrypted payment method data.

Accordingly, the relay server 200 obtains pre-encrypted payment method data from the issuance request information of the decentralized payment token received from the payment terminal 300, decrypts the pre-encrypted payment method data, and decrypts the decentralized payment method. You can configure the data to be encrypted for the token. Here, the data to be encrypted may include, for example, at least one of the card number of the payment method, expiration date, separator, filter, validation data, and CVC information.

Additionally, the relay server 200 may transmit a token issuance request including data to be encrypted to the token processing device 100.

The token processing device 100, in response to the encryption target data included in the token issuance request, may obtain a decentralized payment token that has been decentralized and encrypted so that it can be used only at the first affiliated store corresponding to the payment terminal 300. , the obtained decentralized payment token can be provided to the relay server 200, or directly provided to the payment terminal 300 that requested the decentralized payment token.

Here, the token processing device 100 may be equipped internally or externally with a hardware security module (HSM) equipment 101 that generates and manages the base token derivation key through a physically secured hardware system, and the hardware A first encryption key exclusive to the first affiliated store may be configured using the security module equipment 101, and the distributed payment token may be generated using at least a portion of the payment method data encrypted with the first encryption key.

To describe the token processing device 100 in more detail, the token processing device 100 converts the payment method data included in the token issuance request into a first value calculated using the affiliated store information and encryption counter information of the first affiliated store. 1 Encryption is performed using an encryption key, and a decentralized payment token for the first merchant-only transaction can be generated based on the first part of the encrypted payment method data and the encryption counter information, and the decentralized payment token Can be provided to the relay server 200 or the payment terminal 300.

And, the first encryption key can be calculated in the token processing device 100 using the hardware security module equipment 101. First, the hardware security module equipment 101 is a physically secured hardware system. Through this, a base token derivation key for calculating the initial encryption key for key serial information corresponding to the affiliated store information of the first affiliated store can be output.

Additionally, the token processing device 100 may calculate the initial encryption key using the key serial information and the base token derivation key, and calculate the first encryption key using the initial encryption key and the encryption counter information. You can print it out.

Accordingly, in the token processing device 100, the payment method is processed with the first encryption key so that it can be used only at the first affiliated store, but is distributed and processed into the first part and the remaining second part so that the server side does not retain the complete payment method data. A distributed payment token may be constructed using data, and the distributed payment token may be provided to the payment terminal 300 directly or via the relay server 200.

In addition, when the payment terminal 300 receives the decentralized payment token dedicated to the first affiliated store, a payment approval request full text using the decentralized payment token and payment information (payment amount, payment date and time, product data, etc.) is generated and relayed. It can be transmitted to the server 200. Accordingly, the payment approval request telegram may further include decentralized payment token identifier information indicating that the telegram includes the decentralized payment token.

Accordingly, when the distributed payment token is obtained from the payment approval request telegram, the relay server 200 may transmit a decryption request corresponding to the distributed payment token to the token processing device 100.

The token processing device 100 attempts decryption using the affiliated store information and the distributed payment token included in the payment approval request full text, but if decryption fails, it transmits the failure information to the relay server 200 and sends the failure information to the relay server. (200) may generate payment failure information and respond to the payment terminal (300).

Here, when payment fails, payment approval is requested from an affiliate other than the first affiliate and incorrect key serial information is matched, or the transaction occurs at a time other than the current transaction for which encryption counting is matched, or the first part of the payment data Since it may be a transaction that is not normally confirmed, the normal transaction can be approved only when the first part of the payment data for the transaction that has actually been validly counted at the first affiliated store is confirmed.

Accordingly, the token processing device 100 re-performs the derivation of the first encryption key based on the hardware security module equipment 101 and maps it to the decentralized payment token containing the first portion of payment instrument data. By combining the remaining stored payment method data of the second part to obtain encrypted payment method data and decrypting it with the first encryption key, the integrity of the payment method data itself, the validity of the first merchant, and the validity of the transaction counter are confirmed. It is possible to quickly verify at once, obtain complete payment method data according to the verification results, and provide it to the relay server 200.

Thereafter, the relay server 200 may generate a full payment approval request to the card company server 500 using the payment method data and transmit it to the card company server 500, and receive an approval response from the card company server 500 to use the payment terminal ( 300). Additionally, the relay server 200 discards the payment method data used in the approval request, thereby eliminating the possibility of personal information being leaked after the fact.

Meanwhile, for the above operation, each payment terminal 300, relay server 200, card company server 500, and token processing device 100 are equipped with a communication module to enable network connection to a network communication network or Internet network. and can be configured to be interconnected through communication network connection.

In addition, the payment terminal 300 includes a POS module (not shown) for generating an approval request full text, a communication module (not shown) for communicating with an external server such as the relay server 200, and a type of data distribution module. It may be configured to include a gateway module (not shown) that acts as a gateway, a registry (not shown) for storing payment information data and decentralized payment tokens, or temporarily storing encrypted payment method data.

Figure 2 is a block diagram illustrating in more detail a token processing device according to an embodiment of the present invention.

Referring to Figure 2, the token processing device 100 according to an embodiment of the present invention includes a control unit 110, a communication unit 120, an affiliated store key management unit 130, an encryption processing unit 140, and a payment token processing unit 150. , it includes a transaction counter management unit 160, a service provision unit 170, a storage unit 180, and a data management unit 190.

The control unit 110 controls the overall operation of each component and may include one or more microprocessors to drive the operation of the token processing device 100 according to an embodiment of the present invention.

The communication unit 120 may include one or more communication modules that transmit and receive data for wired and wireless communication with the relay server 200. The communication module may include a wired or wireless communication interface module, a modem that encodes and modulates signals to be transmitted, demodulates and decodes signals received through cables, antennas, etc., and an RF front end that processes RF signals. etc. may be exemplified.

Additionally, the affiliated store key management unit 130 maps, stores, and manages key serial information issued for each affiliated store. Here, the key serial information can be stored and managed in the KSN (Key Serial Number) format based on DUKPT DUKPT (Derived Unique Key Per Transaction), and the affiliated store key management unit 130 stores the key serial information according to the use of the KSN dedicated to each managed affiliated store. KSN for each specific affiliate can be updated.

Additionally, the KSN dedicated to a specific affiliated store managed by the affiliated store key management unit 130 may be linked to the base token derivation key output from the hardware security module device 101. Here, the hardware security module equipment 101 is a base token for calculating an initial encryption key (IPEK, Initial Pin Encryption Key) for key serial information corresponding to affiliated store information of a specific first affiliated store through a physically secured hardware system. It may be a device that outputs a guidance key.

This hardware security module equipment 101 is also called HSM (Hardware Security Module) and may be a typical hardware security module equipment 101 used as a dedicated hardware system equipment for generating and managing encryption keys. It has a hardware random number generation function that generates random numbers using hardware noise as a source, and can be equipped with a dedicated OS and software to prevent encryption key theft. In particular, it includes a defense function against physical attacks, and when attacks are detected, It can be equipped with a function to self-destroy stored encryption keys. Furthermore, the hardware security module equipment 101 may be further equipped with a cryptographic operation function and a log management function to perform part of the cryptographic calculation within the hardware security module equipment 101.

This hardware security module equipment 101 can usually be used to generate an encryption key for encrypting card information, but in order to generate a decentralized payment token according to an embodiment of the present invention, the KSN information and calculation of the specific affiliated store are used. It can be used to obtain the Base Derivation Key (BDK) for the token, which allows the initial encryption key (IPEK) to be obtained. The base derivation key for the token may also be referred to as the base token derivation key and may be the highest unique key for obtaining the first encryption key, so strong security of the encryption process is maintained through the hardware security module equipment 101. It becomes possible.

In addition, the encryption processing unit 140 may calculate an initial encryption key using the affiliated store-specific KSN and the base token derivation key of the hardware security module equipment 101. Here, the initial encryption key may be in the IPEK (Initial Pin Encryption Key) format, and the first encryption key according to an embodiment of the present invention is finally calculated by calculating the IPEK and encryption counter information (encryption KSN, etc.). You can.

Here, the transaction counter management unit 160 is capable of storing and managing the encryption counter information, and the encryption counter information increases in response to each transaction as the encryption of payment method data for each transaction is processed. This is serial number information that can only be updated, and can be calculated through encrypted KSN.

Accordingly, the encryption processing unit 140 can process encryption of the payment method data using the first encryption key when the first encryption key is obtained, and the first encryption key is a symmetric key encryption key. You can. This is to confirm and use the same key when decrypting later. For example, an AES 128/256 symmetric key encryption method may be used.

Additionally, the payment token processing unit 150 may generate a distributed payment token for the first affiliated store-only transaction based on the first part of the encrypted payment method data and the encryption counter information.

More specifically, the payment token processing unit 150 extracts at least a portion corresponding to the first part of the encrypted payment method data and configures the decentralized payment token by combining the encryption counter information obtained from the encryption KSN information. can do.

Accordingly, the service provider 170 can convert the configured distributed payment token into a preset message format and provide it to the relay server 200 or the payment terminal 300 through the communication unit 120.

Here, the preset full text form may include a text text format instructed to use the decentralized payment token only as a payment method corresponding to the first merchant-only transaction, and the decentralized payment token is in Base64 format. It may be a string token or may be composed of a string token in HexString format and included in the full text.

In the full text of these decentralized payment tokens, the number of valid uses or the valid use period of the decentralized token may be specified, and the number of valid uses or the valid use period of each decentralized token itself are separately determined through the service provider 170. It can be managed.

Meanwhile, the data management unit 190 matches the second part of the encrypted payment method data excluding the first part with the key serial information issued corresponding to the affiliated store information of the first affiliated store, It can be stored and managed in the storage unit 180 as a mapping database for decrypting the encrypted payment method data from the full text of the payment approval request using the payment token.

This mapping database may be configured as a database for indexing the second part, corresponding to the payment method data of the first part of the decentralized payment token in the payment authorization request telegram, and using the key serial information as a hash function. It can be processed and stored and managed as index information.

Accordingly, when the payment approval request full text is received through the communication unit 120 and the decentralized payment token is confirmed, the data management unit 190 uses the affiliated store identification information of the first affiliated store included in the decentralized payment token as an affiliated store key. Passes it to the management unit 130 to obtain key serial information (affiliate KSN) corresponding to the merchant identification information of the first affiliated store, and uses the index information obtained by processing the affiliated store KSN with a hash function to use the encrypted payment method. A second portion of data may be indexed in the mapping database.

The second part of the data obtained from the data management unit 190 is combined with the first part of the data included in the decentralized payment token to reconstruct the encrypted payment method data.

In addition, the encryption processing unit 140 generates key serial information (affiliate Using KSN), the first encryption key processed through the hardware security module equipment 101 can be re-obtained, and the encrypted payment method data can be decrypted using the first encryption key. there is.

Accordingly, the service provider 170 can provide the decrypted payment method data to the relay server 200, and the relay server 200 can provide payment information to payment companies such as the card company server 500 using the payment method data. A full payment approval request to the server is generated and transmitted through the communication unit 120, allowing final payment approval and response processing. The payment method data used here is deleted after use, and in the case of the decentralized payment token, it may be deleted upon receiving information on completion of use through the payment terminal 300.

According to this configuration, payment processing exclusively for the first affiliate based on decentralized payment tokens is possible. If the affiliate identified in the full text and the actual affiliate KSN do not match, since it is not a dedicated affiliate, the second part of the payment method data If the index fails and the encryption counter information (KSN counter) does not match, the first encryption key cannot be derived and decryption becomes impossible, and the first part of the decentralized token or the payment instrument data of the second part itself Since it is impossible to restore the actual payment method data alone, even if the relay server 200 or the token processing device 100 itself is hacked and the stored information is leaked, reuse can be fundamentally prevented.

Meanwhile, the storage unit 180 can store and manage encryption information, payment method data, affiliated store identification information, distributed token information, mapping database, etc. processed by the token processing device 100. The storage unit 180 includes RAM (Random Access Memory), flash memory, ROM (Read Only Memory), EPROM (Erasable Programmable ROM), EEPROM (Electronically Erasable and Programmable ROM), registers, hard disk, removable disk, and memory card. It can be implemented as a built-in storage device such as a USB memory, etc., as well as a removable storage device such as a USB memory.

Figure 3 is a flowchart for explaining the token provision operation of the token processing device according to an embodiment of the present invention, and Figure 4 is a diagram for explaining the distributed tokenization processing process according to an embodiment of the present invention.

Referring to FIGS. 3 and 4 , first, the token processing device 100 receives a request for issuing a token for a first affiliated store corresponding to the payment terminal 300 network (S101).

Then, the token processing device 100 obtains the data to be encrypted included in the token issuance request (S103).

Here, the data to be encrypted may include card number and expiration date information as shown in FIG. 4, and may further include identifier information, filter information, and CRC information.

And, as shown in FIG. 4, the token processing device 100 can convert the encryption target data composed of a normal character string into a BCD (Binary-coded decimal, BCD) type to facilitate encryption processing. This is a notation system that combines four binary digits and uses one decimal digit, enabling rapid conversion.

Meanwhile, referring again to FIG. 3, the token processing device 100 acquires key serial information (affiliate KSN) corresponding to the affiliated store information of the first affiliated store (S105), and a key corresponding to the affiliated store information of the first affiliated store. Serial information is input into the hardware security module equipment 101 to obtain a base token derivation key for calculating the initial encryption key for the key serial information (S107).

Referring to FIG. 4, the hardware security module equipment 101 can generate a token base derivation key (BDK) linked to the affiliated store KSN in a secure state according to hardware random number processing.

And, referring to FIGS. 3 and 4, the token processing device 100 calculates the initial encryption key (affiliate IPEK) using the key serial information (affiliate KSN) and the base token derivation key, and A first encryption key is calculated using an encryption key (affiliate IPEK) and encryption counter information (KSN transaction counter of encryption KSN) corresponding to the encryption target data (S109).

Here, the first encryption key is a key for encrypting the next card and may also be referred to as a Future Key (FK). In FIG. 4, the card encryption FK may function as the first encryption key. This can be assigned as a payment method encryption key exclusive to the first affiliated store, and the data to be encrypted converted to the BCD type can be encrypted with card encryption FK to form card number encryption data.

Meanwhile, referring to FIG. 3, the token processing device 100 generates a distributed payment token for the first affiliated store-only transaction based on the first part of the encrypted card information and the encryption counter information (S111). .

Referring again to FIG. 4, by connecting the information of the upper 8 BYTE of the card number encryption data and the KSN transaction counter information of the card encryption KSN and performing string conversion processing (Base 64, HexString, etc.), a decentralized payment token is created. This can be configured.

And, referring to FIG. 3, the token processing device 100 matches the second part of the encrypted card information excluding the first part with the key serial information issued corresponding to the affiliated store information of the first affiliated store. , the encrypted card information is stored as a mapping database for decryption from a payment approval request using the decentralized payment token (S113).

As shown in Figure 4, the affiliated store KSN is HASH processed and can be used as an index key for the remaining second part (lower 8 BYTE) data, and according to the storage and management of this mapping database, the first part and the second part Mutual index mapping and combining are easily accomplished.

And, the configured distributed payment token can be distributed to the payment terminal 300 or the relay server 200 (S115). Alternatively, the distributed payment token can be distributed to a relay server, payment terminal, or specific user terminal and used for online payment.

Figure 5 is a flowchart for explaining the decryption operation of the token processing device according to an embodiment of the present invention, and Figure 6 is a diagram for explaining the distributed token-based decryption processing process according to an embodiment of the present invention.

Referring to FIGS. 5 and 6, a process for restoring payment method data corresponding to a decentralized payment token using a pre-stored mapping database and hardware security module equipment 101 is shown. First, the token processing device 100 is A request to decrypt card information including a distributed payment token is received from the relay server 200 (S201).

Here, the card information decryption request may be generated from the payment approval request full text of the payment terminal 300, and may include the distributed payment token and affiliated store identification information.

Then, the token processing device 100 obtains the pre-stored second part using key serial information issued corresponding to the affiliated store information of the first affiliated store (S103).

To this end, the token processing device 100 may obtain affiliated store key serial information identified in the affiliated store key management unit 130 in response to the affiliated store identification information included in the card information decryption request, and hash the key serial information ( HASH) function processing, and the hash function processed key serial information can be used as a key to index the second part in the mapping database.

Thereafter, the token processing device 100 obtains encrypted card information by combining the first part and the second part of the payment method data included in the distributed payment token (S205).

And, the token processing device 100 performs the hardware security module equipment-based operation based on encryption counter information and key serial information issued in response to the affiliated store information of the first affiliated store to obtain the first encryption key. (S207).

Thereafter, the token processing device 100 decrypts the encrypted card information using the first encryption key (S209), and the decrypted card information can be provided to the relay server 200 (S211).

The process of acquiring and decrypting the first encryption key is shown in more detail in FIG. 6. Referring to Figure 6, in the full text of the token payment approval request, the top 8 BYTE of the card number encryption data and the KSN transaction counter can be identified as distributed payment token data, and the merchant KSN corresponding to the merchant identification information (franchise ID, TID). This inquiry can be processed.

Accordingly, the token processing device 100 can search in the mapping database using the HASH-processed value of the affiliated store KSN as a key, and the second part (lower 8 BYTE) data indexed from this is combined with the first part to store the card. It is possible to configure number encryption data (16BYTE).

In addition, the token processing device 100 can re-output the token BDK using the affiliated store KSN, calculate the affiliated store IPEK, and reconstruct the card encryption FK using the KSN transaction counter, which is payment method data exclusive to the affiliated store. It can be used as a decryption key.

Accordingly, the decrypted card number data is transmitted back to the relay server 200, and payment approval processing is performed through the card company server 500.

Figure 7 is a block diagram illustrating in more detail a payment service providing server according to an embodiment of the present invention.

Referring to FIG. 7, the relay server 200 according to an embodiment of the present invention may operate as a payment service providing server that relays payment approval processing between the card company server 500, which is a payment company server, and the payment terminal 300. , it is possible to issue and manage decentralized payment tokens to provide payment services according to an embodiment of the present invention, and perform specialized processing of payment approval requests based on decentralized payment tokens, as well as approval requests and responses.

To this end, the relay server 200 according to an embodiment of the present invention, as shown in FIG. 7, includes a control unit 210, a communication unit 220, an affiliated store information management unit 230, a distributed payment token management unit 240, It includes a payment approval processing unit 250 and a storage unit 260.

The control unit 210 controls the overall operation of each component of the relay server 200, and one or more microcontrollers for executing a payment process based on the distributed payment token of the relay server 210 according to an embodiment of the present invention. May include a processor.

The communication unit 220 may include one or more communication modules that transmit and receive data for wired or wireless communication with the payment terminal 300, the card company server 500, or the token processing device 100. The communication module may include a wired or wireless communication interface module, a modem that encodes and modulates signals to be transmitted, demodulates and decodes signals received through cables, antennas, etc., and an RF front end that processes RF signals. etc. may be exemplified.

The affiliated store information management unit 230 may pre-register, store, and manage affiliated store information corresponding to the payment terminal 300. For example, the affiliated store information may include the affiliated store name, business registration number, affiliated store address, affiliated store phone number, etc., and identification information (TID) of the terminal registered corresponding to the affiliated store may be stored as affiliated store identification information. Additionally, each terminal identification information (TID) of a plurality of payment terminals 300 may be grouped into one affiliated store identification information and stored. Therefore, the terminal identification information can be used as affiliated store identification information to identify the first affiliated store that will use the above-described distributed payment token.

And, when the decentralized payment token management unit 240 receives a request for issuance of a decentralized token that can only be used at a first affiliated store corresponding to the payment terminal through the communication unit 220 from the payment terminal 300, the token issuance request is made. The payment method information and affiliated store identification information contained in is transmitted to the token processing device 100, and the token processing device 100 uses the hardware security module equipment 101 to encrypt the payment method exclusively for the first affiliated store. It can be obtained by receiving a decentralized payment token using the first part of the data.

Here, the process of generating the decentralized payment token can be performed in the same manner with reference to what was described above with reference to FIGS. 1 to 6.

Additionally, the decentralized payment token management unit 240 may transmit and process the decentralized payment token full text for the first affiliated store-only transaction, including the decentralized payment token, to the payment terminal.

Meanwhile, the payment approval processing unit 250 may receive a payment approval request using the decentralized payment token from the payment terminal 300 through the communication unit 220, and the decentralized payment full text of the payment approval request. A payment company server that transmits the token and affiliated store identification information to the token processing device 100, obtains the payment method information obtained by decrypting the payment method encryption data from the token processing device 100, and uses the payment method information. A payment approval request to the card company server 500 can be processed.

In addition, the payment approval processing unit 250 may receive the payment approval response from the card company server 500 through the communication unit 220 and transmit it to the payment terminal 300.

Meanwhile, the storage unit 260 can store and manage payment approval request text, distributed payment tokens, affiliated store information, payment method data, etc. processed by the relay server 200. The storage unit 260 includes RAM (Random Access Memory), flash memory, ROM (Read Only Memory), EPROM (Erasable Programmable ROM), EEPROM (Electronically Erasable and Programmable ROM), registers, hard disk, removable disk, and memory card. It can be implemented as a built-in storage device such as a USB memory, etc., as well as a removable storage device such as a USB memory.

Figure 8 is a ladder diagram for explaining a distributed payment token-based payment processing process according to an embodiment of the present invention.

Referring to Figure 8, in the distributed payment token-based payment processing process according to an embodiment of the present invention, first, a payment program is executed in the payment terminal 300 (S1001), and the payment terminal 300 receives payment information from the user. Receive input (S1003).

Then, the payment terminal 300 transmits a request for issuance of a distributed payment token corresponding to the payment method data input from the user to the relay server 200 (S1005).

Thereafter, the relay server 200 transmits a request for issuance of a distributed payment token including payment method data and affiliated store identification information to the token processing device 100 (S1007).

In addition, the token processing device 100 encrypts the payment method data exclusively for the first affiliated store corresponding to the payment terminal (S1009), and generates a distributed payment token using the first partial data of the encrypted payment method data and an encryption counter. And (S1011), the remaining second part data and the hash information of the affiliated store KSN are mapped and stored and managed in the database (S1013).

Afterwards, the token processing device 100 provides the distributed payment token to the relay server 200 (S1015), and the distributed payment token is registered and status information in the distributed payment token management unit 240 of the relay server 200. can be managed.

Then, the registered decentralized payment token is delivered to the payment terminal 300 (S1017), and the payment terminal 300 generates a payment approval request using the decentralized payment token (S1019) and sends it to the relay server 200. Transmit (S1021).

Afterwards, the relay server 200 extracts the decentralized payment token and affiliated store identification information from the payment approval request (S1023), and transmits the extracted decentralized payment token and affiliated store identification information to the token processing device 100 to use the payment method. Request decryption of data (S1025).

Thereafter, the token processing device 100 indexes the second partial data by using the hash information of the affiliated store KSN corresponding to the affiliated store identification information as a key in the mapping database, and combines the indexed second partial data with the first partial data. Encrypted payment method data is obtained (S1027), and decryption processing is performed using the first affiliated store-specific decryption key using the encryption KSN including the affiliated store KSN and the encryption counter and the hardware security module equipment 101 (S1029) ).

Accordingly, the decrypted payment method data is transmitted to the relay server 200 (S1031), and the relay server 200 transmits a payment approval request based on the payment method data to the card company server 500 (S1033) and reports the result. It receives (S1035) and transmits the response message to the payment terminal 300 (S1037).

When the approval process is completed, the relay server 200 can perform management processing such as deducting the number of uses of the distributed payment token through the distributed payment token management unit 240. Status information corresponding to the number of uses or expiration date may be managed and queried according to the request of the payment terminal 300.

Figure 9 is a ladder diagram to explain the management process of decentralized payment tokens according to an embodiment of the present invention.

Referring to FIG. 9, the payment terminal 300 can select a distributed payment token currently received and managed from the relay server 200 (S2001), and status information corresponding to the selected distributed payment token is searched through the relay server ( 200) (S2003).

Accordingly, the relay server 200 may request token status information inquiry from the token processing device 100 or query management information managed by the relay server 200 (S2005), and the inquired status information may be sent to the payment terminal ( 300), the response can be processed (S2007, S2009).

Meanwhile, the relay server 200 can confirm the unusability of the distributed payment token as status information according to preset conditions (S2011).

Here, the status information may be exemplified by the current number of uses compared to the number of validity or the current use time compared to the validity period. Management of the status information of such tokens is useful in various payment systems such as gas stations, unmanned vending machines, amusement parks, and hotels. It can be utilized effectively. For example, a decentralized payment token may be created that allows payment only for a certain period of time, such as at a hotel or amusement park, and a decentralized payment token may be created that allows payment only a certain number of times at a gas station, etc. The payment token management unit 240 may directly process expired tokens, etc. as unusable according to the status information inquiry.

Here, the unusability processing includes individual deletion processing of the distributed payment token itself whose number of uses or expiration date has expired, or includes decryption rejection processing that causes the relay server 200 to refuse decryption even if the token has not been deleted. Alternatively, it may include batch deletion processing of unusable processing tokens accumulated over a certain period of time.

For example, the relay server 200 may perform unusability processing of decentralized payment tokens whose validity period or number of uses has exceeded and transmit the information to the token processing device 100 (S2015), according to the decision. Token unusability processing result information may be transmitted to the relay server 200, and token unusable response information may be transmitted to the payment terminal 300 as status information (S2019).

In addition, when a token deletion request is received, the token processing device 100 deletes the second part of the encrypted payment method data and the affiliated store KSN hash information mapped and stored in the mapping database to prevent the decentralized payment token from being used anymore. It can be handled. Furthermore, all distributed payment tokens stored and managed in the payment terminal 300 or the relay server 200 are deleted, so that both the first partial data and the second partial data cannot be reused.

Meanwhile, Figures 10 and 11 are ladder diagrams for explaining a distributed payment token-based payment processing process according to other embodiments of the present invention.

10 and 11, the decentralized payment token-based payment processing process according to another embodiment of the present invention is based on provisional approval and true approval in various payment systems such as gas stations, unmanned vending machines, amusement parks, and hotels. It can be processed as a payment process.

In particular, when the decentralized payment token-based payment process according to an embodiment of the present invention is processed into two payment processes divided into provisional approval and true approval, which will be described later, payment errors occur, incorrect charging, or fraudulent use occurs. This can be prevented in advance, a process to acquire a separate token is not required, and a payment process based on a secured decentralized payment token is processed with just one payment method recognition, and provisional approval is obtained as a result of normal processing. Since the approval and cancellation response of the full request can be confirmed, and the approval and payment response based on the decentralized payment token of the true approval request can be confirmed, payment history management in the payment terminal 300 can also be easily processed. there is.

To this end, when the relay server 200 receives a pre-approval payment request as a request for issuance of the distributed token from the payment terminal 300, it can issue a corresponding distributed payment token and transaction serial number, and the transaction serial number You can store and manage card number information of payment methods by mapping them.

In addition, the payment terminal 300 receives a pre-approval result response containing the transaction serial number and a decentralized payment token, and requests a pre-approval cancellation request based on the transaction serial number and a true approval payment request based on the decentralized payment token. It can be transmitted to the relay server 200.

The true approval payment processing process for each case corresponding to this is disclosed in Figures 10 and 11. Here, the provisional approval may correspond to a pre-approval request corresponding to a pre-set provisional transaction amount, the pre-set provisional transaction amount may be greater than or equal to the actual transaction amount of the true approval, and the true approval may correspond to a pre-approval request corresponding to the actual transaction amount. It can also be called a post-approval request.

Accordingly, the decentralized token issuance request in FIG. 8 may include a pre-approval payment request corresponding to the provisional transaction amount received from the payment terminal in FIGS. 10 and 11, and the decentralized payment token full text may be included in the pre-approval payment request. It may include a pre-approval result response corresponding to the payment request, and the pre-approval result response may include a transaction serial number used to cancel the pre-approval payment and the distributed payment token.

Furthermore, a true approval payment request corresponding to a transaction for which cancellation of the pre-authorization payment has been confirmed may be processed, and the true approval payment request may function as a full text of a payment approval request using the decentralized payment token. In addition, an integrated message that combines the cancellation of provisional approval payment using the transaction serial number and the full approval payment request message using the decentralized payment token may be used as the payment approval request message using the decentralized payment token. This will be described in more detail in FIGS. 10 and 11.

First, referring to Figure 10, in the distributed payment token-based payment processing process according to an embodiment of the present invention, a payment program is first executed in the payment terminal 300 (S3001), and the payment terminal 300 receives payment from the user. Pre-approval payment information including method data and provisional transaction amount is input, and a pre-approval request full text is generated (S3003).

Then, the payment terminal 300 transmits a provisional approval payment request including the payment method data input from the user and the provisional transaction amount to the relay server 200 (S3005)

Thereafter, the relay server 200 transmits the pre-authorization payment request to the card company server 500 (S3007) and receives a corresponding approval response (S3009).

Here, the relay server 200 may issue in advance a transaction serial number corresponding to the approved pre-authorized payment, and the issued transaction serial number consists of a card number and a mapping table of payment method data and is sent to the relay server 200. It can be stored temporarily.

Thereafter, the relay server 200 transmits a request for issuance of a distributed payment token including payment method data and affiliated store identification information to the token processing device 100 (S3011).

In addition, the token processing device 100 encrypts the payment method data exclusively for the first affiliated store corresponding to the payment terminal (S3013), and generates a distributed payment token using the first partial data of the encrypted payment method data and an encryption counter. And (S3015), the remaining second part data and the hash information of the affiliated store KSN are mapped and stored and managed in the database (S3017).

Afterwards, the token processing device 100 provides the distributed payment token to the relay server 200 (S3019), and the distributed payment token is registered and status information in the distributed payment token management unit 240 of the relay server 200. can be managed.

In addition, the registered decentralized payment token may be included in the pre-approval result response text along with transaction serial number information and transmitted to the payment terminal 300 (S3021).

Additionally, the payment terminal 300 may generate a pre-approval payment cancellation request full text using only the transaction serial number in response to the pre-approval result response and transmit it to the relay server 200 (S3023).

Afterwards, the relay server 200 can obtain card number information for canceling provisional approval by using the transaction serial number and card number mapping table stored in pre-mapping without a separate card number or token, and obtain the transaction serial number obtained. Request cancellation of provisional authorization to the card company server 500 using the card number corresponding to the number (S3025).

Then, the relay server 200 receives the provisional authorization cancellation response from the card company server 500 (S3037) and transmits it to the payment terminal 300 (S3039).

Thereafter, the payment terminal 300 generates a true approval payment request full text including the actual transaction amount and a decentralized payment token for the first affiliated store in response to the canceled pre-authorization payment, and transmits it to the relay server 200. (S3041).

Accordingly, the relay server 200 extracts the decentralized payment token and affiliated store identification information from the full text of the authentic payment approval request (S3043), and transmits the extracted decentralized payment token and affiliated store identification information to the token processing device 100. and request decryption of the payment method data (S3045).

Thereafter, the token processing device 100 indexes the second partial data by using the hash information of the affiliated store KSN corresponding to the affiliated store identification information as a key in the mapping database, and combines the indexed second partial data with the first partial data. Encrypted payment method data is obtained (S3047), and decryption processing is performed using the first affiliated store-specific decryption key using the encryption KSN including the affiliated store KSN and the encryption counter and the hardware security module equipment 101 (S3049) ).

Accordingly, the decrypted payment method data is transmitted to the relay server 200 (S3051), and the relay server 200 transmits a true approval payment approval request based on the payment method data to the card company server 500 (S3053). The result is received (S3055) and the response message is delivered to the payment terminal 300 (S3057).

Here, the true approval payment approval request transmitted from the relay server 200 to the card company server 500 may use a key-in approval request full text format. Key-in approval request is a method of requesting approval by directly inputting card information rather than separate encryption data. In case the reader function of the terminal is broken, etc., a prior agreement process with the card company server 500 is made. As a possible approval request method, the relay server 200 generates a key-in approval request full text containing decrypted payment method data as card information as a true approval payment approval request and transmits it to the card company server 500, The full key-in approval response can be received as a result and transmitted to the payment terminal 300.

Accordingly, the payment terminal 300 is able to receive a key-in approval response of decrypted payment method data as a response message corresponding to a true approval payment request including a distributed payment token.

According to this processing, the payment process using a decentralized payment token according to an embodiment of the present invention can be implemented by a pre-approval and true approval process. In particular, in the cancellation of pre-approval, the transaction serial number is used, and the decentralized As payment tokens are used only for true approval payments, they reduce network load and can be applied to pre-approval and true approval-based payment processes in various payment systems such as gas stations, unmanned vending machines, amusement parks, and hotels in a more efficient and faster form. You can.

Additionally, referring to FIG. 11, in the distributed payment token-based payment processing process according to another embodiment of the present invention, steps S4001 to S4021 may be performed in the same manner as steps S3001 to S3021 of FIG. 10.

Thereafter, in response to the provisional approval result response, the payment terminal 300 combines the pre-approval payment cancellation request text using only the transaction serial number and the true approval payment request text corresponding to the actual transaction amount and including the decentralized payment token. , the full text of the request for cancellation of provisional approval and true approval can be generated in one piece and transmitted to the relay server 200 (S4023).

Thereafter, as in FIG. 10, the relay server 200 can obtain card number information for canceling provisional approval by using the pre-mapped stored transaction serial number and card number mapping table without a separate card number or token. , Request cancellation of provisional authorization to the card company server 500 using the card number corresponding to the obtained transaction serial number (S4025).

Then, the relay server 200 receives a provisional authorization cancellation response from the card company server 500 (S4027).

In addition, the relay server 200 extracts the decentralized payment token and affiliated store identification information from the full text of the authentic payment approval request (S4029), and transmits the extracted decentralized payment token and affiliated store identification information to the token processing device 100. Request decryption of payment method data (S4031).

Thereafter, the token processing device 100 indexes the second partial data by using the hash information of the affiliated store KSN corresponding to the affiliated store identification information as a key in the mapping database, and combines the indexed second partial data with the first partial data. Encrypted payment method data is obtained (S4033), and decryption processing is performed using the first affiliated store-specific decryption key using the encryption KSN including the affiliated store KSN and the encryption counter and the hardware security module equipment 101 (S4035). ).

Accordingly, the decrypted payment method data is transmitted to the relay server 200 (S4037), and the relay server 200 transmits a true approval payment approval request based on the payment method data to the card company server 500 (S4039). The result is received (S4041) and the response message is delivered to the payment terminal 300 (S4043).

Here, the response full text may include the provisional approval cancellation and true approval payment approval response full text, and is transmitted as one, thereby reducing the network load and providing rapid provisional approval cancellation and true approval payment processing. .

The method according to the present invention described above can be produced as a program to be executed on a computer and stored in a computer-readable recording medium. Examples of computer-readable recording media include ROM, RAM, CD-ROM, and magnetic tape. , floppy disks, optical data storage devices, etc., and also includes those implemented in the form of carrier waves (for example, transmission via the Internet).

The computer-readable recording medium is distributed in a computer system connected to a network, so that computer-readable code can be stored and executed in a distributed manner. And, functional programs, codes, and code segments for implementing the method can be easily deduced by programmers in the technical field to which the present invention pertains.

In addition, although preferred embodiments of the present invention have been shown and described above, the present invention is not limited to the specific embodiments described above, and the technical field to which the invention pertains without departing from the gist of the present invention as claimed in the claims. Of course, various modifications can be made by those skilled in the art, and these modifications should not be understood individually from the technical idea or perspective of the present invention.

Claims (25)

In the method of operating the payment service providing device,
Receiving a request for issuance of a decentralized token that can only be used at the first affiliated store from the payment terminal;
The payment method data included in the token issuance request is transmitted to the token processing device, and a first encryption key is calculated using key serial information issued in response to the first affiliated store and encryption counter information updated to correspond to each transaction. Encrypting the payment method data, and obtaining a decentralized payment token for the first merchant-only transaction generated based on a first part of the encrypted payment method data and the encryption counter information from the token processing device. steps;
Transmitting the decentralized payment token full text for the first affiliated store-only transaction including the decentralized payment token to the payment terminal;
Receiving a full text of a payment approval request using the decentralized payment token from the payment terminal;
Obtaining decrypted payment method data using the distributed payment token and affiliated store identification information in the payment approval request full text; and
Comprising the step of processing a payment approval request to the payment company server using the payment method data,
The decrypted payment method data is
A method of operating a payment service providing device comprising combining a first part of the payment method data decrypted using the distributed payment token and a second part of the payment method data matched in a database using the affiliated store identification information. . According to paragraph 1,
The decentralized token issuance request includes a provisional approval payment request corresponding to the provisional transaction amount received from the payment terminal,
The decentralized payment token full text includes a pre-approval result response corresponding to the pre-approval payment request,
The pre-approval result response includes the transaction serial number used to cancel the pre-approval payment and the decentralized payment token.
Method of operation of a payment service providing device. According to paragraph 2,
The step of receiving a payment approval request using the decentralized payment token from the payment terminal,
Comprising the step of receiving, from the payment terminal, a true approval payment request corresponding to a transaction for which cancellation of the pre-approved payment has been confirmed, as a full text of a payment approval request using the decentralized payment token.
Method of operation of a payment service providing device. According to paragraph 2,
The step of receiving a payment approval request using the decentralized payment token from the payment terminal,
A step of receiving, from the payment terminal, an integrated telegram that combines the cancellation of the provisional approval payment using the transaction serial number and the full text of the true approval payment request using the decentralized payment token as the payment approval request telegram using the decentralized payment token. containing
Method of operation of a payment service providing device. According to paragraph 1,
The step of acquiring the decentralized payment token is,
Passing the payment method information to a token processing device to encrypt the payment method data included in the token issuance request with a first encryption key calculated using the merchant information and encryption counter information of the first affiliated store. ; and
Receiving from the token processing device the decentralized payment token for the first merchant-only transaction, generated based on the first portion of the encrypted payment instrument data and the encryption counter information.
Method of operation of a payment service providing device. According to clause 5,
The first encryption key is calculated using hardware security module equipment,
The hardware security module equipment is,
Outputs a base token derivation key for calculating the initial encryption key for key serial information corresponding to the affiliated store information of the first affiliated store through a physically secured hardware system,
The token processing device is
Calculate the initial encryption key using the key serial information and the base token derivation key, and calculate and output the first encryption key using the initial encryption key and the encryption counter information.
Method of operation of a payment service providing device. According to clause 6,
The token processing device,
By matching the second part of the encrypted payment method data excluding the first part with the key serial information issued in response to the merchant information of the first affiliated store, the payment approval request using the decentralized payment token is received. To decrypt encrypted payment method data and store it as a mapping database
Method of operation of a payment service providing device. In clause 7,
Receiving a full text of a payment approval request using the decentralized payment token from the payment terminal;
Extracting the decentralized payment token and affiliated store identification information from the payment approval request full text; and
Comprising the step of transmitting a request to decrypt payment method data including the decentralized payment token and the affiliated store identification information to the token processing device.
Method of operation of a payment service providing device. According to clause 8,
The token processing device obtains the pre-stored second part by using key serial information issued in response to the merchant information of the first affiliated store included in the decryption request, and obtains the second portion pre-stored and the first portion of the payment method encryption data. Combining the part and the second part to obtain the payment method encryption data
Method of operation of a payment service providing device. According to clause 8,
Decryption processing using the first encryption key processed from the token processing device through the hardware security module equipment, using key serial information issued in response to the encryption counter information and the affiliated store information of the first affiliated store. Further comprising the step of receiving payment method data
Method of operation of a payment service providing device. According to paragraph 1,
Further comprising the step of setting the number of effective uses or the effective use period of the decentralized payment token.
Method of operation of a payment service providing device. According to clause 11,
Checking status information including the number of valid uses or valid use period of the decentralized payment token; and
Comprising the step of performing deletion processing of the decentralized payment token whose status information has been inquired.
Method of operation of a payment service providing device. In the payment service provision device,
A communication unit that receives a request for issuance of a decentralized token that can only be used at the first affiliated store from the payment terminal; and
The payment method data included in the token issuance request is transmitted to the token processing device, and a first encryption key is calculated using key serial information issued in response to the first affiliated store and encryption counter information updated to correspond to each transaction. Encrypting the payment method data, and obtaining a decentralized payment token for the first merchant-only transaction generated based on a first part of the encrypted payment method data and the encryption counter information from the token processing device. and a distributed payment token management unit that transmits the full text of the distributed payment token for the first merchant-only transaction, including the distributed payment token, to the payment terminal.
The communication unit receives a full text of a payment approval request using the decentralized payment token from the payment terminal,
The payment approval processing unit acquires decrypted payment method data using the decentralized payment token and affiliated store identification information in the payment approval request text, and processes a payment approval request to the payment company server using the payment method data. ,
The decrypted payment method data is
A payment service providing device configured to combine a first part of the payment method data decrypted using the distributed payment token and a second part of the payment method data matched in a database using the affiliated store identification information. According to clause 13,
The decentralized token issuance request includes a provisional approval payment request corresponding to the provisional transaction amount received from the payment terminal,
The decentralized payment token full text includes a pre-approval result response corresponding to the pre-approval payment request,
The pre-approval result response includes the transaction serial number used to cancel the pre-approval payment and the decentralized payment token.
Payment service provision device. According to clause 14,
The Department of Communications,
Receiving, from the payment terminal, a true approval payment request corresponding to a transaction for which cancellation of the pre-approved payment has been confirmed as a full text of a payment approval request using the decentralized payment token.
Payment service provision device. According to clause 14,
The Department of Communications,
From the payment terminal, an integrated telegram combining the cancellation of provisional approval payment using the transaction serial number and the full approval payment request telegram using the decentralized payment token is received as the payment approval request telegram using the decentralized payment token.
Payment service provision device. According to clause 13,
The decentralized payment token management unit,
The payment method information is transmitted to a token processing device, so that the payment method data included in the token issuance request is encrypted using a first encryption key calculated using the merchant information and encryption counter information of the first affiliated store,
Receiving from the token processing device the decentralized payment token for the first merchant-only transaction, generated based on the first portion of the encrypted payment instrument data and the encryption counter information.
Payment service provision device. According to clause 17,
The first encryption key is calculated using hardware security module equipment,
The hardware security module equipment is,
Outputs a base token derivation key for calculating the initial encryption key for key serial information corresponding to the affiliated store information of the first affiliated store through a physically secured hardware system,
The token processing device is
A device that calculates the initial encryption key using the key serial information and the base token derivation key, and calculates and outputs the first encryption key using the initial encryption key and the encryption counter information.
Payment service provision device. According to clause 18,
The token processing device,
By matching the second part of the encrypted payment method data excluding the first part with the key serial information issued in response to the merchant information of the first affiliated store, the payment approval request using the decentralized payment token is received. To decrypt encrypted payment method data and store it as a mapping database
Payment service provision device. According to clause 18,
The communication unit receives a payment approval request using the decentralized payment token from the payment terminal,
The payment approval processing unit extracts the decentralized payment token and merchant identification information from the payment approval request full text, and transmits a request to decrypt payment method data including the decentralized payment token and the affiliated store identification information to the token processing device. doing
Payment service provision device. According to clause 20,
The token processing device obtains the pre-stored second part by using key serial information issued in response to the merchant information of the first affiliated store included in the decryption request, and obtains the second portion pre-stored and the first portion of the payment method encryption data. Combining the part and the second part to obtain the payment method encryption data
Payment service provision device. According to clause 21,
The payment approval processing unit uses key serial information issued from the token processing device in response to the encryption counter information and the affiliated store information of the first affiliated store to process the first encryption key through the hardware security module equipment. Using to receive decrypted payment method data
Payment service provision device. According to clause 13,
The decentralized payment token management unit sets the number of effective uses or the effective use period of the decentralized payment token.
Payment service provision device. According to clause 23,
The decentralized payment token management unit,
Queries status information including the number of valid uses or valid use periods of the decentralized payment token, and performs deletion processing of the decentralized payment token for which the status information has been inquired.
Payment service provision device. A computer program stored in a computer-readable medium for executing the method according to any one of claims 1 to 12 on a computer.