KR20020003256A - The tailored cd card for internet user - Google Patents

Abstract

PURPOSE: A customized Compact Disk(CD) card for an Internet user is provided to offer new payment method for a stable electronic commerce on a cyberspace by protecting personal information in a shopping mall. CONSTITUTION: A cyber CD issuing company issues a CD gift certificate or a CD fixed amount coupon having information such as price information and a program related to an initializing and coding movement built in a small CD(1). A user purchases the CD gift certificate or the CD fixed amount coupon issued in the cyber CD issuing company(2). The user connects to a shopping mall on the Internet, determines a commodity to purchase, and uses the CD gift certificate or the CD fixed amount coupon as the payment method(3). The shopping mall processes the CD gift certificate or the CD fixed amount coupon(4). The cyber CD issuing company decodes the coded file received from the user and performs a price payment process by using information related to the shopping mall transferred from the shopping mall(5). The cyber CD issuing company connected with a bank through a private line pays directly the price by on-line(6).

Description

Creative CD Cards for Internet Users {THE TAILORED CD CARD FOR INTERNET USER}

The present invention is an invention in which the concept of credit card, financial card, gift certificate, cash amount and key used in real life can be used on the Internet using a small CD card.

Until now, the CD-ROM that can be used in the computer CD driver has been used only as a memory function with a mass storage function. In other words, audio CDs, video CDs, or program packages were mainly used to spread, and other CD-Rs have been mainly used to back up file systems. However, with the speed up of CD drivers and the rapid decline in CD prices, CDs can be used for a variety of purposes to suit individual needs. In addition, the size of the CD has also been miniaturized and is now reduced to the size of the existing credit card size, was developed to be portable.

In the conventional method for purchasing goods on the Internet, various functions have been implemented by directly inputting credit card information on the Internet or by using a separate encryption module software. However, this can be generalized due to security problems such as hacking called inverse information function. Could not. In addition, there was no concept of an internet gift certificate or an internet coupon. Recently, research on electronic money, electronic gift certificates, etc. has been focused on the implementation of software by payment gateway system and application program development in cyberspace, but it is difficult to put into practical use because it is inconvenient for the general public to use. . In addition, research into a security method using a medium such as an IC card is currently being actively conducted, but since the driver price for the IC card is expensive, there are many problems to be common. Therefore, the product that applies the encryption algorithm to this compact CD is likely to be commercialized because it can meet the needs of the public at a safe and low price.

Solving the problems in the conventional method operated as described above, CD gift certificate, CD flat-rate ticket and custom-made CD financial card, CD key and the like for the Internet user has the following originality.

(1) As a product using a small CD, it can be used as a unique and inexpensive type and can solve all the information security problems that occur in electronic commerce on the Internet.

(2) As a product using a small CD, we present an algorithm for performing concepts such as gift certificates, flat coupons, keys, ID cards, and controllers in cyberspace.

(3) The proposed small CD products are classified into the following three categories, and the system configuration and application method are presented.

① System configuration and application method to use CD gift certificate and CD flat coupon presented in the form of CD-ROM (CD-Read Only Memory).

② System configuration and application method to use CD financial card (integrated bank card with the function of bank debit card and credit card) presented in the form of CD-R (CD-Recordable).

③ System configuration and application method for using CD key, CD ID, CD controller for specific system presented in CD-R format

(4) The cryptographic algorithm is applied to the method using the small CD.

① It solves all security problems that may occur when CD is lost or copied by using password technique.

② Secret key encryption algorithm for credit card information stored in CD

③ Other security algorithm

(Signature Algorithm to Prevent Unauthorized, Cryptographic and Decryption Algorithm to Protect Confidentiality)

1: Operation flow chart of CD gift certificate and flat certificate in CD-ROM form

2: Security Measures for CD Gift Certificates and Flat-rate Tickets in CD-ROM Type

3: Operation flow chart of the CD financial card of the CD-R type

4: The purchase payment settlement service in the shopping mall for the CD financial card of the CD-R type

Security measures

5: Security plan for banking business for CD financial card of CD-R type

6: CD-R type CD identification card, CD key operation flow chart

7: CD-R type CD identification, security measures for the CD key

<Explanation of symbols for the main parts of the drawings>

(Fig. 1) Notation in drawing

(Fig. 2) Notation in drawing

(Fig. 3) Notation in drawing

(Fig. 4) Notation in drawing

(Fig.5) Notation in drawing

(Fig. 6) Notation in drawing

(Fig. 7) Notation in drawing

The product using the small CD is a CD in the form of a small card that can be read by a computer CD driver. The product can be classified into three types as defined in the above sections, and the system configuration and operation algorithms for use on the Internet are provided. Suggest.

(1) The use of CD gift certificate and CD flat coupon presented in the form of CD-ROM (CD-Read Only Memory) is as follows.

① CD straight ticket: Issued by cyber financial institution or cyber CD issuing company, this CD holds a certain amount of cash in the CD and can be used as a cash function in cyber space. It can be reused by the charging function through the issuing company, and the balance problem caused by the use of gift certificates in real life can be easily solved through direct deposit.

② CD Gift Certificate: A CD issued by a cyber financial institution or a cyber CD issuing company or a shopping mall, which holds a gift certificate for a certain amount in a CD, and can be used as a function of a gift certificate in cyberspace. Is limited to a specific manufacturer or company, but this CD voucher can take advantage of the ability to be used simultaneously in many shopping malls.

The function of the cyber CD issuer may be performed in a shopping mall or a cyber affairs institution as needed. Cyber financial institutions are financial institutions that add functions on the Internet for Internet users to the functions of existing financial institutions.

(Operation description: Purchase procedure using CD gift certificate and CD flat coupon-see Figs. 1 and 2)

① Agreement process between shopping mall and cyber CD issuing company:

The cyber CD issuing company issues CD gift certificates and CD flat coupons with a small CD containing information such as price information and programs related to initialization and encryption operations. The CD gift certificate contains information on products that a consumer can purchase with the gift certificate, URLs of the relevant shopping malls, and product information. In the case of a CD flat ticket, information on the price, information on products that a consumer can purchase at the flat price, and product information on a related shopping mall are included. In addition, CD flat coupons and CD gift certificates contain information on merchants and products that can be used with the card under the agreement with the cyber CD issuing company, and URLs and product information on related shopping malls, and can be helpful to users. Index information for various shopping malls and home shopping site information that can be accessed by clicking only may be included.

② CD Gift Certificate, CD Flat Ticket Purchase Process:

CD vouchers and CD flat coupons issued by cyber CD issuing companies are purchased at general department stores or on the market for a certain amount of money. During the purchase process, the user must register with the cyber CD issuing company online or offline through the seller the password and balance account number to be used for the user's authentication. The cyber CD issuer deposits an amount corresponding to a gift certificate and a flat coupon in the user's account, and registers the serial number of the CD flat certificate or CD gift certificate and the user's password in the database of the cyber CD issuer.

③ Purchase process in the shopping mall of Internet users:

After the user accesses a shopping mall on the Internet and decides a purchase item, the user can use a CD flat coupon or a CD gift certificate as a payment method. It is processed as follows by the program installed on the CD. The information files related to cash and gift certificates in the CD and the password entered by the user are encrypted by the session key (Ks) generated by the user, and again by encrypting the session key (Ks) with the public key of the cyber CD issuer. The decipherable package C1 is constructed. Then, C1 merges information (CD serial number, purchase product information, purchase price) P to be delivered to the shopping mall, generates C2, encrypts C2 with the public key of the shopping mall, and transmits the final ciphertext Y1 to the shopping mall.

④ CD Gift Certificate and CD Flat Ticket Processing Process in the Shopping Mall:

In the shopping mall, some of the information transmitted from the user is processed by the shopping mall, and the information about the shopping mall is added to the cyber CD issuing company by adding information about the shopping mall to the encrypted contents to be delivered to the cyber CD issuing company. That is, the shopping mall decrypts the information (Y1) received from the user with the private key of the shopping mall to generate C2, and in C2, the necessary information (CD serial number, purchase product information, purchase price) P in the shopping mall is stored in its own DB. . The information C1 to be sent directly from the user to the cyber CD issuing company is merged with the information related to the shopping mall (shopping mall information, payment price) P 'to generate C3, and then encrypted with the public key of the cyber CD issuing company to generate Y2. And transmit it to the cyber CD issuing company.

⑤ Payment process at cyber CD issuing company:

The cyber CD issuing company decrypts the encrypted file sent by the user, and performs a payment processing process using information related to the shopping mall delivered from the shopping mall. That is, the cyber CD issuing company decodes the information Y2 received from the shopping mall with its own private key to generate C3, and separates and extracts the package received from the user from the shopping mall and the information received from the shopping mall. The package C1 received from the user decrypts using his private key, extracts the session key Ks, and again uses the CD voucher information and password using the session key to receive the CD voucher or flat coupon received from the seller. By checking and comparing the contents recorded in the issuing database, the validity of the CD flat coupon and CD gift certificate is confirmed. Meanwhile, the payment is performed using information received from the shopping mall (shopping mall information and payment), and the balance is deposited into the user account, thereby completing the payment.

Finally, the cyber CD issuer keeps Y2 records to prevent the risk of sending from users and shopping malls.

⑥ Balance processing at bank

The cyber CD issuer, which is connected to the bank by leased line, can make payment through the online connection with the bank. The amount used for gift certificates and flat coupons will be settled in the user's account. If the cyber CD issuing company is a financial institution such as a bank, the payment process can be solved by itself without going through a separate bank. If the cyber issuer is not a financial institution, payment may be made using a CD-R type CD financial card issued by the cyber financial institution.

It can be reused by depositing a certain amount into one's account at the request of other users and charging CD flat coupons by accessing the CD issuing company using information and password on CD flat coupons online.

(2) The use of CD financial card (integrated card with bank debit card function and credit card function) presented in the form of CD-R (CD-Recordable) is as follows.

① CD financial card: In the future, it is expected that debit cards issued by cyber financial institutions and credit card functions issued by credit card companies will be integrated on the Internet. Accordingly, the card issued by the cyber financial institution is integrated with the functions of wire transfer, bank transfer, payment, and credit card between bank accounts, and encrypts the card user information, account information and credit card information. It will be used as a card for conducting safe financial operations in cyberspace. In addition, the CD financial card can contain promotional materials for banks, information related to finance required by users, and related site information that can be accessed by clicking.

(Operation Description: Payment of Payment at the Shopping Mall Using CD Financial Card-Refer to FIGS. 3 and 4)

① Agreement process between shopping mall and cyber financial institution:

A cyber financial institution with a function of issuing a CD financial card performs banking tasks related to issuing banks' CDs and issuing CD financial cards that can operate on the Internet, and issuing CD financial cards and banking services related to CD financial cards (accounts, Means a financial institution that can perform remittance, payment, etc.) and credit transactions. If necessary, you can also separate the financial institution that is in charge of financial affairs from the cyber CD issuer who is responsible for CD-related financial services.

Cyber financial institutions issue CD financial cards that can perform debit card functions of banks and credit cards in shopping malls on the Internet. In other words, when a user accesses a cyber financial institution using a CD financial card on the Internet, the user can perform financial affairs with the bank (payment, current and other accounts, etc.), and when accessing a shopping mall, Make a credit purchase using a CD financial card. In the CD financial card, information about the card issued by the financial institution, expiration date, and user information is encrypted using the secret key encryption technique related to the issuance of the CD financial card and recorded on the CD, and protected from security risks such as loss and copying. In order to use it on the Internet, a password function for user authentication is added and issued.

The CD financial card contains information on the merchants and products that can be used with the card under the agreement with the cyber financial institution, and URLs and product information on related shopping malls. In addition, it can include index information for various shopping malls that can be helpful to users and home shopping site information that can be accessed by clicking only.

② CD Financial Card Issuance Process:

A user accesses a cyber financial institution online, enters identification information and a password, issues a CD financial card or visits a branch of a cyber financial institution to verify his / her identity, and then issues a CD financial card. When you receive a CD financial card, you must register a password for user authentication and open an account with a cyber financial institution. All payments on the Internet using a CD financial card are made to an account opened at a cyber financial institution.

③ Banking using bank card (account debit, remittance, payment)

In the case of banking using a CD financial card, the process in this section 3 is omitted.

④ Purchase process in shopping mall using CD financial card:

When the user accesses a shopping mall using a CD financial card, the user can make a payment or credit payment using the CD financial card. That is, the shopping mall is processed as follows by a program installed on a CD as a payment method for goods to be purchased.

The user encrypts the encrypted card information file embedded in the CD financial card and the password entered by the user by the session key (Ks) that the user has generated, and encrypts the session key (Ks) with the public key of the cyber financial institution. Create C1 is a content that can only be decrypted by a cyber financial institution, and is a cipher text to be transmitted to a cyber financial institution via a shopping mall. Information related to the purchased product to be delivered to the shopping mall (purchase product information, user information, purchase price, etc.) P creates a signature by using the user's private key to prevent the user's disapproval, generates P1, and merges C1 and P1. To generate C2. C2 encrypts the public key of the shopping mall and transmits the final ciphertext Y1 to the shopping mall.

⑤ Credit Payment and Payment Request Process at Shopping Mall:

In the shopping mall, some of the information transmitted from the user is processed by the shopping mall, and the information about the shopping mall is added to the cyber CD issuing company by adding information about the shopping mall to the encrypted user information transmitted to the cyber CD issuing company. That is, the shopping mall decrypts the information Y1 received from the user with the private key of the shopping mall to generate C2, and C2 includes a cipher text C1 to be directly transmitted to the cyber financial institution and a signature P1 for the user's purchase record. The user's signature P1 extracts the necessary information (purchase product information, user information, purchase price) from the shopping mall by using the user's public key, and the user's signature text and purchase related information are prevented from being denied in the future. In order to keep it in its own DB. In addition, the signature (P2) is created from the information C1 to be sent directly from the user to the cyber financial institution by using the shopping mall's private key as the private key of the shopping mall. Generates Y2 by encrypting it with the public key of the institution and sends it to the cyber financial institution.

The cyber financial institution decrypts the information (Y2) received from the shopping mall with its own private key to generate C3, and extracts the package (C1) received directly from the user from C3 and the signature (P2) received from the shopping mall. do. The package (C1) received from the user decrypts the private key of the cyber financial institution, extracts the session key (Ks), and extracts the encrypted card information and the password embedded in the CD financial card using the session key again. In addition, the encrypted card information is decrypted by the cyber financial institution using its secret key used in connection with the issuance of the CD financial card. Using the CD financial card information and password, the bank checks the user by comparing and confirming the contents recorded in the user database related to the CD financial card. The signature text P2 of the shopping mall received from the shopping mall extracts the shopping mall information and the information P ′ related to the price by using the public key of the shopping mall. Using the information received from the shopping mall (shopping mall information and payment), payment or credit payment is made from the user's bank account, and the "approval" command is notified to the shopping mall.

Finally, the cyber financial institution keeps the signature letter P2 of the shopping mall and the information C1 transmitted from the user in its DB in order to prevent the risk of transmitting part from the user and the shopping mall.

⑥ Confirmation of purchase price payment at shopping mall:

The shopping mall is notified that the credit settlement is completed from the cyber financial institution, and the user is informed that the payment or credit settlement is completed.

⑦ Banking process at cyber financial institutions:

In the case of banking using a CD financial card, the process in this subsection ⑦ is omitted.

(Operation Description: Banking using CD financial card-see Figures 3 and 5)

① Agreement process between shopping mall and cyber financial institution:

Same as the above ① process of payment for payment in the shopping mall using the above CD financial card.

② CD Financial Card Issuance Process:

Same as the ② process of the payment settlement in the shopping mall using the above CD financial card.

③ Banking using bank card (account debit, remittance, payment)

This process is used when a CD financial card user wants to transfer an account from a bank account opened at a cyber financial institution to another account or make a direct transaction such as payment or wire transfer. Payment process and encryption method is different.

In the banking process using a CD financial card, a signature P1 is prepared using a user's private key with information about the user's password and banking information (accounts related to credit, wire transfer, and payment). Generates C by merging the encrypted card information (M) embedded in the CD financial card and the signature (P1), and generating the ciphertext Y using the public key of the recipient cyber financial institution. To pass.

④ Purchase process in shopping mall using CD financial card:

In the case of banking using a CD financial card, the process in this section ④ is omitted.

⑤ Credit Payment and Payment Request Process at Shopping Mall:

In the case of banking using a CD financial card, the process in this section ⑤ is omitted.

⑥ Payment process for purchases from cyber financial institutions:

In the case of banking using a CD financial card, the process in this section ⑥ is omitted.

⑦ Banking process at cyber financial institutions:

The cyber financial institution decrypts the ciphertext Y received from the user with its private key and separates P1 and M. Since M is the card information encrypted by the cyber financial institution, the cyber financial institution decrypts the card information, extracts the card information, and decodes the signature text using the user's public key, P1, to generate P. do. By using P to extract the user's password and information related to the banking business, the user is authenticated and the financial business requested by the user is processed. The processed result is delivered to the user.

(3) The usage of the CD key for a specific system presented in the form of CD-R (CD-Recordable) is as follows.

① CD ID: It is issued by the cyber CD issuing company, which is a certification authority on the national institution or other cyber space, and contains the encryption key for performing the user's ID information and encryption algorithm. And also means a CD that can perform the encryption algorithm in conjunction with the program stored in the PC.

② CD key: CD key issued by certification authority or other issuing authority on internet can store encryption key for encryption system and issue CD key to user of encryption system. It is also a CD with a key to control access to a specific system (server or database). It can be used as a personal safe on the Internet regardless of location or location.

(Operation Description: CD Key, CD ID Card, CD Controller Operation Procedure-Figs. 6 and 7)

① Agreement between cyber CD issuer and specific server or database

CD ID is a function of performing a function in the cyber space such as a resident registration card which is used to prove identity in general real life. In other words, the CD identification card may contain the encryption key used in the cryptographic system of the public key infrastructure together with the personal information of the Internet user.

The cyber CD issuer issues a CD ID (hereinafter referred to as a CD key) that can be used for access control at the request of a specific person or a specific institution for a system such as a specific server or database. The CD key encrypts and stores information about the user, serial number, and access control, and embeds a specific encryption algorithm. In addition, information and URLs for accessing a specific system are embedded in the CD to enable access with a click. It also assigns a password to prevent copying and theft in case of loss.

② CD key, CD ID card, CD controller issuing process:

A user accesses a cyber CD issuing company online, enters his or her identity information and password, or visits a branch of a cyber bank to verify his / her identity and receive a CD financial card. When issuing a CD financial card, a password for user authentication must be registered, and a security algorithm is built according to the user's request as necessary.

③ Process for connecting to a specific system using the CD key:

A process in which a user connects to a specific system by using a CD key, and uses an access control list (ACL) built in the access control system. In the ACL, passwords for the accessible users and access rights for each user are set. The CD key user is operated by a built-in program and is connected to a specific system by clicking an icon for the specific system contained in the CD key card. The CD key merges the encrypted information for access to a specific system, the type of authority to be used in the system, and the password for authentication to generate a message M, and transmits the encrypted message using the public key of the access control system.

④ Process in Access Control System

In the access control system, the information received from the user is decrypted using its private key, and the encrypted CD key information, the type of authority to be used in the system, and the user's password are extracted. First, the user's password is compared with the list recorded in the access control list (ACL) built in the access control system, and the user authentication is performed. After the user authentication is completed, the access authority is checked. If approved in this procedure, the user is given access to a particular system (server or database). As such, in some cases, the function of the access control system may be operated in a specific system. In addition, the access control system preserves the user's access record, thereby preventing the possibility of future disputes.

The usage of the custom CD (CD album, etc.) presented in other CD-R format is as follows.

① CD on demand: It means the CD on demand that has the function of collecting the public information on the Internet in the form of a collection or the album function according to the request of the organization. For example, it is possible to produce an on-demand broadcast CD and an on-demand record CD in an Internet broadcasting station. In addition, it is possible to produce a CD on-demand with an address book for an Internet URL in an Yellow Page.

In the present invention operating as described in detail above, the effects obtained by the representative ones of the disclosed inventions will be briefly described as follows.

In the case of Internet home shopping users, until now, the card number and expiration date are inputted to the shopping mall as a payment method for the goods purchased in the Internet electronic shopping mall, and the shopping mall is again connected with a dedicated line to check the credit of the card member. It uses a method of sending a request to a company. This is a security problem because important information such as card number and expiration date are delivered to the shopping mall in an unprotected state, and then to the information and communication company. However, the payment method according to the present invention is as follows.

On a personal computer connected to the Internet, a CD gift certificate, a CD flat card, a CD financial card (hereinafter referred to as a CD card) and related software according to the present invention are installed, and directly connected to a shopping mall by using a CD card. The encrypted data from the data and the data related to the purchase are connected to the cyber bank via the shopping mall. The personal information embedded in the CD card passes through the shopping mall, but cannot be extracted from the shopping mall, thereby providing a new payment method for secure electronic commerce in cyberspace. In addition, in a simpler way, users provide a way to safely apply the concept of gift certificates and flat-rate tickets that are used in real life using the Internet.

In addition, since the CD financial card and CD gift certificate, CD flat coupon, CD key, CD control key, etc. issued to the Internet users are implemented to be used on the Internet as it is used in real life, there is no objection from the user, especially security It is highly likely that it will be universal in view of low price.

Claims (4)

The use of the Internet using the small CD (general credit card size CD) used in the present invention is an original idea. A compact CD is a device that can be operated using a CD driver installed in a computer, and invented a strong security algorithm that solves the problems related to copying due to the advantages of CD price reduction, CD miniaturization, CD driver speed, portability, etc. By applying and mechanically compensating for other fragile disadvantages, the application can be expanded. The present invention proposes various applications using CDs on the Internet, and invents and proposes respective operation methods and security algorithms for them. We propose a CD-ROM, a CD-ROM, a CD-ROM for a gift certificate and a flat-rate coupon, which are used in real life, and propose a method of operation and security on the Internet using the same. In addition, we propose a CD financial card that can be applied on the Internet by integrating the concepts of bank cards and credit cards used in real life, and present the operation method and security method on the Internet using the same. In addition, we propose the concept of CD key, CD ID, etc., which can be applied to the concept of the key and ID used in real life on the Internet. These CD Gift Certificates, CD Flat Tickets, CD Financial Cards, CD Keys and CD Identification Cards can be operated from any computer with a CD driver and internet connection, regardless of location or location. The CD gift certificate and the CD flat coupon presented in claim 1 are small CDs in which information corresponding to a predetermined amount and information related to gift certificates and flat coupons are stored in advance in a CD, and a cryptographic algorithm and an operation program are embedded in the CD. It is an invention designed to use the function of gift certificates in circulation in the cyber space called the Internet. It is a next-generation Internet gift certificate that is invented so that Internet users can purchase products on Internet home shopping using the CD driver built into their computers. CD vouchers and CD flat coupons can be issued in the form of CD cards by cyber CD issuing companies that have agreements with shopping malls. Register your number and password. When an internet user purchases a product at an internet shopping mall and pays a price, the presenter presents the CD gift certificate and the CD flat-rate ticket, and the shopping mall can pay it through a cyber payment company. In addition, in the case of the CD flat-rate pass, it can be reused through a process (charge process) of depositing a certain amount of money into the user's account. The operation method on the Internet using the CD gift certificate and the CD flat coupon is composed of six procedures as shown in FIG. 1, and the proposed security measures include the symmetric key encryption session key and the public key encryption public key and private key. The encryption / decryption process using FIG. 2 is configured as shown in FIG. 2, and a detailed description thereof is as described in (Configuration and Operation of the Invention). The CD financial card of the CD-R format presented in claim 1 is encrypted and stored with the private key of the cyber financial institution that can be decrypted only by the cyber financial institution, and the encryption algorithm is stored in the CD. And a CD in which an operation program is embedded, and is an invention designed to use a function of a magnetic credit card currently used in a cyberspace called the Internet. It is a low-cost, next-generation credit card that was invented so that Internet users can use it for payment in internet home shopping using the CD driver built into their computers. CD financial cards can issue CD financial cards by cyber financial institutions that have agreements with Internet home shopping malls. A cyber financial institution is an institution that can perform payment for Internet users on existing banks' business (banking and credit transactions) and can be replaced with general banks. The Internet user registers his / her account number and password when issuing a CD financial card. The password is used to solve various problems that may occur when the CD financial card is lost. When the CD financial card is used for payment in the Internet shopping mall, a user authentication function is performed. The contents of the CD financial card are not transmitted to the shopping mall, but directly to the cyber financial institution by using the encryption / decryption process using the symmetric key cryptography session key and the public key cryptography public key and private key. Configured to be delivered. In addition, in order to prevent the transmission denial which may occur in the future, the user's signature is kept in the shopping mall, and the cyber financial institution keeps the signature of the shopping mall and the user's encrypted card information in their DB. The operation method on the Internet using such a CD financial card is composed of seven procedures as shown in FIG. Security method for payment payment business in shopping mall using CD financial card (Figures 3 and 4) and security method for banking business (transfer, account transfer, payment, etc.) using CD financial card (Figures 3 and 5) Proposed as, the detailed description thereof is the same as described in (Configuration and operation of the invention). In addition to encrypted card information, CD financial cards issued to Internet users can store home shopping sites categorized according to their needs and tastes. In other words, when Internet users want home shopping, they operate CD financial cards to access the home shopping sites they are interested in, select items, and immediately access the cyber information and communication company to perform the payment process. Can be embedded in a CD financial card. The CD ID and CD key presented in claim 1 are small CDs that control access to a distributed database or server on the Internet. The present invention is designed to use the concept of a key and ID in the cyberspace of the Internet. . By using the access control algorithm provided by the cyber CD issuing company, the algorithm, access control method and related password and authentication key related to access control are determined by the agreement with the relevant access control system, and the CD containing these modules is issued. do. When a user wants to access a specific server or database after issuing, only authorized users can access the specific server or database under the control of the access control system. A small CD that contains encryption information embedded in the CD controller along with personal information in a CD card. When accessing a specific system on the Internet, a password is used together with the CD controller. It is possible to perform functions such as on the Internet. The method of using the CD controller, the CD ID, and the CD key on the Internet is composed of four procedures as shown in FIG. 6, and the proposed security method uses a public key and a private key using a public key cryptography method as shown in FIG. The encryption / decryption process used is used, and a detailed description thereof is as described in (Configuration and Operation of Invention).