KR20050017699A - Portable terminal control device, specially in connection with conducting a stable and convenient payment process while processing a fund transfer service with one click - Google Patents

Abstract

PURPOSE: A portable terminal control device is provided to supply a mobile right approver and approving terminal authenticating/confirming device capable of being connected to a data port interface or being inserted into a personal portable terminal, thereby basically protecting user information. CONSTITUTION: A memory stores each access path, a cellular phone registration number, a card user number, and a password. A processor(100) reads an access path card user number and the password according to settings of the memory whenever information selected from a cellular phone(200) is inputted, and processes the read settings based on the inputted information. An interface communicates with a portable terminal. When a device is connected to a mobile or the portable terminal, the device automatically accesses a designated path to display an upgraded version on a display. Only when an inputted password is identical with the stored information, data and a program of the device are upgraded.

Description

Handheld terminal controller {omitted}

Mobile phones, which started as voice communication devices, have developed into multi-function devices that perform various functions including multimedia functions. On the other hand, in the transaction, payment methods have been continuously developed in pursuit of security and convenience of payment, and cash and checks have been replaced with plastic credit cards, and further developed into IC cards with enhanced security. In addition, mobile wallets, which use mobile telecommunications, have emerged, and mobile communication has played a direct and indirect role in various forms of payment in the payment market.

However, the electronic wallets that have emerged up to now cannot use a pre-supplied telephone, but instead are supplied in the form of a new type of dedicated terminal, which is not easy to expand the market, and a problem occurs due to loss. In addition, because it relies only on readers dedicated to telecommunication networks, its usage is limited and limited to wired and wireless e-commerce, and the procedures are complicated and each payment does not overcome limitations such as excessive communication fees, errors, and security failures. have.

In addition, with the recent development of information and communication technology and the explosive spread of global communication infrastructure such as the Internet, communication has become a business battleground without borders beyond the simple concept of 'the sea of information'. The Electronic Payment System, which transmits credit cards and payment information through an open network such as the Internet, has attracted attention, but on the other hand, there is a problem that anxiety about exposure of credit information acts as a barrier. have.

In fact, the biggest problem in commerce is protecting credit information efficiently. To this end, various payment methods such as prepaid card type, credit card type, deposit transfer type and electronic cash type are used, but various types of security devices are required to protect credit information. It is impossible to protect users' credit information, and the inconvenience of having to go through complicated usage procedures due to security devices is pointed out as a problem.

For example, when attempting an existing e-commerce, when a user connects to a shopping mall and submits a purchase by entering a product name or a credit card number in an order form on a browser, the credit card number and the order form are encrypted with respective keys and sent to the shopping mall company. send. In order to send and receive accounts or credit card numbers, data must be encrypted. However, there is a problem of leaking personal information to an unrelated agency, so only shopping malls use encrypted orders and only credit card companies can decrypt encrypted credit card numbers.

However, this method of strengthening the security of personal information is not perfect, and thus, a separate security measure for the case of finding out the hacking or the credit card number in an unjust manner must be prepared again.

This technology inserts all payment and personal information (ID) into a mobile phone such as credit card, debit card, prepaid card, department store card, bonus card, transportation card, gift certificate, coupon / ticket, ID card, pass, etc. Stored in the memory or chip connected to perform the operation only when the mobile terminal and the user is normal, and the user and the device of the present invention without any need to access the information or transfer of information anytime, anywhere, all payments and personal It is a new technology that opens up a convenient world without the need for a wallet and safeguards customer's important information and division by allowing the identification function to be performed safely and automatically.

In another example, the present invention can be applied to an electronic door lock, that is, when the user uses an electronic door based on the device and method of the present invention, it is a perfect solution to the problems of the current electronic door. In general, the personal identification device used by the user does not have two-way communication with the user. Anyone who has a device that is suitable for the electronic door opening and closing device can enter and exit the device. Those who do not have access to the source,

First of all, the door device is more secure than the current electronic door of the one-key method because the user who accesses the device through the short range communication can know whether the registered mobile phone and the device of the security device are normal. In this case, the entire electronic key must be changed or the registration must be managed separately. However, when the device and the method of the present invention are applied, it cannot be used by simply reporting it to the mobile operator or the door management shop. If the question and answer of the present invention are inquired by the device and method, and it is not the correct answer, the accessor cannot engage the electronic door.

In addition, the device and method of the present invention can be carried out without tools and mechanisms of a separate display unit and an input unit, so that the cost of providing a cabinet and a service is almost zero.

In addition, if the customer asks M customer to set 7777 as fixed value to 7777 as the fixed value in your password, the user M can enter 4444 on the keypad. It is possible to use the keypad and screen of the mobile phone itself without additional cost and equipment to perform the work, which ensures stable and convenient use.

You can also check and open the identity of a guest or visitor who has arrived at home from a distance. In the example of use, if the user of the device of the present invention enters the password ## 1234 into the keypad of the mobile phone, the device of the present invention approves the above confirmation through the internal communication and then through the external public telephone network communication and data communication network. Reach the designated destination and send out the user's phone number or password. The management system that receives the phone number or password transmits the CID specified in the user's home and the call number recognition controller that transfers the CID of the management system Opens up,

In this case, the same pattern can be used between the management system and the call number recognition controller to maximize efficiency and security.

In the above application, before the user uses the electronic transaction and offline payment, the user is authenticated by using the authentication function on a device having the customer personal information and service progress function of the portable terminal carried by an individual or a company member. Can be provided that can be used in principle to prevent the theft and unauthorized use of information and communication devices and any systems and services that interoperate therewith.

Therefore, the technical problem to be achieved by the present invention is a module type mobile authority approver and approval terminal authentication / verification device or authority approver and authorization terminal authentication / When you make a payment at a restaurant through the device verification method or when the approved mobile terminal and the device of the present invention are linked in any payment environment, as described above, you can make a stable and convenient payment and transfer it to a customer or a payment destination. One click processing, home automation main controller and car management and information transmission are easy, and one-click processing of each complex device can be done in one step automatically. It is composed of mobile communication and mobile Advancement of terminal performance can be simplified. When the device and method of the present invention are applied to a portable terminal, it is obvious that the existing portable terminal market and application market are efficient and maximized. Just press the button on the phone like a TV remote control, or pay close to the local communication system and long-distance wireless public telecommunication network without having to lower the window at toll gates, parking lots, drive-throughs, gas stations, etc. It is possible to provide convenience, promptness, safety, and to insert into a personal mobile terminal such as mobile, PDA, etc., and to communicate with the mobile terminal by connecting to the data port of the mobile terminal. The present invention provides a method for authenticating an approver and an approval terminal / device.

In accordance with an aspect of the present invention, a mobile authority approver and an approval terminal authentication / confirmation apparatus include: a memory in which an encrypted user number is stored; A processor which reads a user's telephone number and a management number, and then decodes based on the input number, determines whether there is information that matches the input signal, and connects and performs;

An interface unit for internal communication with the mobile terminal;

It includes, and the display unit and the keypad is obtained by using the screen and the keypad attached to the mobile terminal to obtain, input information for the initial registration, occasional confirmation.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a schematic diagram illustrating a portable terminal authority approver and an approved terminal authentication / control device and a portable terminal according to a preferred embodiment of the present invention.

Reference numeral 200 denotes a portable terminal, 201 denotes a data port for data input and output of the portable terminal, 100 denotes an authority approver and a certificate approval / verification device, 104 denotes an interface, 105 denotes a near field communication unit 101 and 102, an MPU unit EEPROM & fresh memory. Represents wealth.

In order to implement such a mobile right approver and an approval terminal authentication / verification device, the MPU inside the terminal and the mobile right approver and the approval terminal authentication / verification device of the present application have the same protocol. H / W may be implemented as a one-chip type ASIC.

Authorization approver and authorization terminal authentication / confirmation device according to an embodiment according to the present invention communicates via a wired or wireless interface such as RS232 and USB (S2) to the LCD and keypad and internal information and shortcut keys mounted on the portable terminal It can also be linked with the saved DB.

When the authority approver and approval terminal authentication / confirmation device 100 is inserted into the data port 201 of the mobile terminal, when the user intends to use or make a payment, the authority approver and approval terminal authentication / confirmation device are connected to the portable terminal. After determining whether the terminal is authorized for authentication through communication (S3) with the inside of the terminal, and after determining that the user uses a terminal that has been properly approved, the user operates the mobile terminal to make a call, connect various contents, and Enables billing, data download, upload and approval functions. When the mobile authority approver and the approval terminal authentication / confirmation apparatus 100 are inserted into the data port 201 of the portable terminal or connected to a power source (S1), the instructions S2 and S3 for acquiring the control right of the portable terminal are automatically generated. Is executed.

The initial screen is displayed on the terminal LCD, and the user determines whether the authorized terminal and the authorized terminal authentication / confirmation device are connected to the terminal through the communication with the terminal. Enter the initial password (S20) through the mobile in order to determine whether to use in a reasonable condition.

Referring to FIG. 5A, a method of initially inputting a password and a method of assigning a simple formula described in the above embodiment can be applied. For example, the user's password is 7777. If the user selects and inputs the display, -3456 is displayed on the display, the user only needs to remember the formula of 7777-3456 = 4321 based on his password 7777, and security can be changed from time to time. It is a sure security that imitation is impossible even if other people see it by the MPU offering the number.

The areas that can be controlled by the device are:

Key words of mobile terminal (S61) Mobile terminal data bank (S62) Base station information (S63) Keypad operation control right (S64) Transmitter control (S65) Sound control (S66) System monitoring unit (S67) Self-diagnosis processing unit (S68) Received data Processing unit (S69) can control the internal communication control unit (S70) screen control unit (S71).

Fresh and EEPROM (101 and 102) can be decoded and stored according to the set rules, such as registration number mobile phone element number and MPU operation basic information. In particular, the fresh and EEPROMs 101 and 102 store telephone numbers or address addresses (hereinafter referred to as " access addresses ") of a plurality of destinations, and respective authentication and secret numbers. It is used sequentially according to the order (operation order). The MPUs 101 and 102 use the access address, the authentication address, and the password corresponding to the input values when the signals and data are input through the keypad 202 and the internal information in order according to the order of use. It operates according to the set rules stored in the command. If the corresponding condition is not registered, it is executed as it is.

In particular, according to the user's input data among the respective access paths and multiple authentication cards and user numbers stored in the EEPROMs 101 and 102, one path, authentication, and various numbers corresponding to the conditions are read and used conveniently by the user. To help.

After inserting the data port, check again whether it is to be used (S20).

The password may be stored in the mobile authority approver and the approval terminal authentication / confirmation apparatus 100 at the first operation, and may be used if the number entered in the future is compared with the stored password.

When the initial registration password of the personal mobile terminal communicating with the mobile authority approver and the approval terminal authentication / confirmation apparatus 100 is displayed according to the password input, the user may change the password at any time. The number and validity period of the card number can be registered and provided to the commerce system and the financial sector so that payment and transfer can be made (S100). In this case, the final password can be entered once more. In other words, when a user purchases a product at a shopping mall site through a network, the user inputs the number displayed in the commerce system using the user's mobile terminal, and enters the SEND key to transmit the access address, the card, and the authentication number. If you purchased the product at a general card merchant offline, the phone number and payment amount of the business is provided to the payment system and financial institution in accordance with the order and pattern inquired by the authorized approver and the authorized terminal authentication / verification device so that payment and transfer are completed. For example, when ## is input to the terminal interworking with the authority approver and the authorized terminal authentication / confirmation device, the authority approver and the approval terminal authentication / confirmation device interworks with the business phone number (virtual account and this account). Or ask for the merchant code (business phone number? OR merchant number) Enter the phone number and merchant number provided in 0553620227 #, (You can enter the identification symbol such as # or * after each input process is completed or set as input after a certain time). The authorization approver and authorization terminal authentication / confirmation device asks for the amount (payment amount? Or transfer amount?) At this time, the user enters 20,000 # (after each input process is completed, enter a descriptive symbol such as # or * After it can be set to the input)

The authorization approver and approval terminal authentication / confirmation device asks for an installment deadline (installation period?) In this case, when the user inputs 3 #, the installation means a three-month installment. You can also do After the final input is completed, the commerce system provided with the information and authentication from the user transmits the transaction details and related matters to the financial processing system through the network (S101). Here, the data transmitted to the payment financial processing system may include a mobile authority approver and an approval terminal authentication / confirmation symbol.

The mobile authority approver and the approval terminal authentication / confirmation processing unit determine the approval and non-approval after receiving the approval and transaction details transmitted from the approval and commerce system (S90). That is, the mobile authority approver and the approval terminal authentication / confirmation apparatus transmit the approval result to the commerce system when the transaction approval is notified from the authentication system or the approval is determined by itself (S102).

On the other hand, if a transaction approval rejection is notified from the transfer, payment system, or authentication system or the transaction approval is rejected by itself, a message indicating that the transaction approval has not been made is sent to input the correct number and symbol.

The flow in this mobile right approver and approval terminal authentication / verification device is shown sequentially in FIG. 4.

In the mobile authority approver and approval terminal authentication / confirmation apparatus (S100), if a password is confirmed after inputting a button input signal through the keypad 202 in the normal waiting step S1 (S10), the display unit 203 is changed. The use confirmation message is displayed to query whether the use is again (S20).

Next, if the password is the same as the stored password, it is normally displayed on the display unit 203 by being decrypted with the correct decryption key (S40), whereas the password is stored with the password stored in the authority approver and the authentication terminal authentication / verification device. If it is not the same, re-entry and rejection are displayed on the display unit 203 by decrypting with the wrong decryption key (S50). Therefore, if a third party intentionally enters a random number as a password, it is displayed as a decrypted and stored symbol. Therefore, even if a third party attempts an e-commerce transaction using the authority approver and the approval terminal authentication / verification device, Since it can not be received, damage by theft can be easily prevented.

On the other hand, the password can be used only when it matches the stored password every time the password is entered. In this case, the password can be set to double to improve security.

5 illustrates an example of a screen on which a password may be displayed on a display unit according to an exemplary embodiment.

FIG. 5B illustrates a screen displayed on a display unit so that a user can know a number required for online payment.

When using the mobile authority approver and the authorized terminal authentication / confirmation device according to the embodiment, a mobile phone having an Internet function can automatically access a specific site that executes an electronic money service to purchase, charge or check balances. In addition, the balance may be transferred using another person's mobile authority approver and approval terminal authentication / verification device.

As described above, the present invention is a system and method for controlling and approving the use and access of the mobile terminal and the service and the accessory device interoperating with the important information stored therein, so as to fundamentally solve the information theft. The mobile authorization approver and authorization terminal authentication / verification device is interlocked with a personal portable terminal to automatically check whether it is connected to a registered authorization device or a legitimate user, and can be inserted into a personal portable terminal and connected to a data port interface. Provides a mobile authority approver and approval terminal authentication / confirmation device. According to the present invention, even if the device is obtained in an illegal manner by another person, it is not easy to use any device, and the effect of fundamentally protecting the user's information can be obtained. Illegal attempts can also be caught immediately and the transaction can be stopped, and the normal registration manager and room owner can be notified immediately through the network, preventing further losses and crimes.

As described above, in the case of using the mobile authority approver and approval terminal authentication / confirmation apparatus and the method thereof, a cumbersome and complicated connection process according to the service type of each user and duplication such as individual symbols and authentication code input process The device does not need to work automatically and has the advantage that it can safely use or use various services and information by using a mobile phone or mobile authority approver and approval terminal authentication / confirmation device.

In addition, in the above-described part, as anybody of related companies can know, the device is connected to the user's mobile phone, so it is possible to improve the performance of the operation function and various configurations compared to the general smart card. The power of a cell phone can be used together, so it can be used as a much more powerful tool than a general smart card method, and any method supporting near field communication can be easily accepted. For example, since the battery of the mobile phone is used as a power source, any device such as infrared, blues, and radio frequency system can be accommodated. Also, the size of the battery is limited in consideration of the size and design of the mobile phone. The device and method is an embodiment of an optimized system, and it is designed to allow the user to sleep mode and shut down the mobile authority approver and the authorized terminal authentication / confirmation device at any time by interlocking an operation of opening or opening a folder or polyp. In addition, the switch can be placed in case it does not support some functions.

If the devices used therein do not use the method described and implemented in the present invention, the situation in which the device for determining the information and assets of the individual is not forged or tampered with is also indicated in the present invention. In case of using the terminal authentication / verification device and the method, the hassle of selecting the cards is eliminated because each benefit is different for each card at the exchange, A gas station discounts 40 won when using s, B gas station It is inconvenient to remember that every time you use H-card, you need to remember it every time. All authentication of all credit cards, bank cards, stock cards, department stores cards, gas station cards, etc. / Payment related cards are integrated and each priority bookmark registration function It is selected automatically have the advantage that can be used.

In addition, the mobile authority approver and approval terminal authentication / confirmation apparatus and method thereof according to the present invention have the advantage that the user can select / use more conveniently by using the LCD and the keypad of the terminal.

Unlike other solutions that require the installation of a new payment terminal, the present invention can directly service an existing payment terminal (card reader, etc.), thereby reducing the enormous cost of rebuilding the infrastructure.

Existing payment terminal and payment system can be used as it is, so infrastructure can be constructed at low cost, thus creating a wide range of usage environment in a short time.

The wireless short range means excluding the long distance can accommodate infrared rays, RF (Radio Frequency), Bluetooth (Bluetooth), wireless LAN, etc., or each. Each communication means has its advantages and disadvantages.

In e-commerce and mobile Internet e-commerce, card numbers are memorized and payment is completed by simple button operation on the mobile phone without the inconvenience of typing on the keyboard. Payment information is also encrypted so that others cannot steal payment information. .

1 is a perspective view of the invention made in accordance with the present invention

2 is a basic interface configuration and basic registration and operation flow for the operation of the present invention

3 is the scope of the invention and the scope of the subject innovation

4 is a flow of an example program according to the present invention

5 is an exemplary view of a screen that may be displayed on a display unit of a payment card according to a second embodiment of the present invention.

Explanation of symbols for main parts of the drawings

100. Device of the Invention 108. Award Case 109. Ha case

102. Circuit board (B) 101. Control ICs (MPU) 103. Memory

104. Connector pin 105. Near field communication department

200. Mobile terminal 201. Data port 300. Connector and Connector Cable

Claims (6)

Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is inputted, the processing unit reads the access path card user number and passwords in turn according to the setting from the memory, and then processes the set setting conditions based on the input information in a promised manner. ; An interface for communicating with the portable terminal; The mobile device receives a registration number and the like by connecting and inserting the mobile device and the mobile device, and authenticates and controls the use rights of the device only when it matches the stored information. Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is input, the access path, the card user number and the password are read in turn according to the setting from the memory, and then the read setting conditions are processed in a promised manner based on the input information. Processing unit; An interface for communicating with the portable terminal; Mobile rights to authenticate and control the use rights of the device only when the user connects and inserts it into the display on the device and asks for the password on the display and when the password entered using the keypad matches the stored information. Approver and approval terminal authentication / verification device and method Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is inputted, the processing unit reads the access path card user number and passwords in turn according to the setting from the memory, and then processes the set setting conditions based on the input information in a promised manner. ; An interface for communicating with the portable terminal; The user can connect and insert the mobile and the mobile terminal into the display and ask the password from the device from time to time during use, and authenticate and control the authority to use the device only when the password entered using the keypad matches the stored information. Mobile authorization approver and approved terminal authentication / verification device and its method Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is inputted, the processing unit reads the access path card user number and passwords in turn according to the setting from the memory, and then processes the set setting conditions based on the input information in a promised manner. ; An interface for communicating with the portable terminal; When the user connects and inserts the mobile and the portable terminal, the user inputs the password by displaying the password on the display unit in the device in the form of a question and answer using the promised +-formula, and stores the stored information of the answer entered using the keypad. Mobile authorization approver and authorization terminal authentication / verification device and method for authenticating and controlling device usage rights only if the answer is based on the formula (based on 7777 question mark -3333 answer 4444). Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is inputted, the processing unit reads the access path card user number and passwords in turn according to the setting from the memory, and then processes the set setting conditions based on the input information in a promised manner. ; An interface for communicating with the portable terminal; When the user connects and inserts the mobile and the portable terminal, the device automatically accesses the designated path, displays the version upgrade on the display, and asks if the user's input password matches the stored information using the keypad. Mobile authorization approver and authorized terminal authentication / verification devices and methods for upgrading and controlling data and programs on the device Memory for storing access paths, mobile phone registration numbers, card user numbers, passwords, etc .; Whenever the information selected in the mobile phone is inputted, the processing unit reads the access path card user number and passwords in turn according to the setting from the memory, and then processes the set setting conditions based on the input information in a promised manner. ; An interface for communicating with the portable terminal; The user can connect and insert the frequently used connections and functions into the display and display them on the display, and ask and display the data selected and input using the keypad. If so, the device automatically accesses and controls the number and address stored in the bookmark and the mobile authorization approver and authorization terminal authentication / verification device and method thereof.