KR20050023757A - System and method for credit approval using a fingerprint information - Google Patents

Abstract

PURPOSE: A method and a system for credit card settlement using fingerprint information on a member shop device are provided to perform the credit card settlement and accumulate point without a card by searching/identifying a customer through a fingerprint recognition technology. CONSTITUTION: A fingerprint settlement terminal(201) includes a fingerprint scanning part, a keypad, a display part, and a card reader. A credit settlement device(200) includes a fingerprint search client(202), a POS(Point Of Sale) client/WebPOS(204), a credit settlement processor(206), and a point accumulation processor(208). The fingerprint search server transmits fingerprint information of the customer buying goods or services to a fingerprint search server(220) through the network. The fingerprint information is converted into an OTT(One Time Template) for a fingerprint by combining with an OTT key received from the fingerprint information server. The fingerprint search server includes a search server distributor(221), a fingerprint search engine(223), a fingerprint database(225), a DBMS(DataBase Management System)(227), a relational database(229).

Description

System and method for credit approval using a fingerprint information}

The present invention relates to a credit payment method and system capable of searching for and identifying a customer using a fingerprint recognition technology to perform a credit card payment without a separate card medium, and additionally accumulating customer points.

Recently, thanks to the spread of the credit verification system by the development of electronic and communication technology, various credit transactions have been made for buying or selling goods or services later using personal or company credits. A representative example of such a credit transaction is a credit card. A credit card is a plastic identification card issued by a bank or a large store. It is a card that allows postpay payment for goods or services or withdraws cash from a cash dispenser (CD). For this purpose, the credit card stores a magnetic stripe or an electronic chip with identification information and password of the card holder. Credit card merchants access the main computer of the credit card issuing company online with a credit check terminal (CAT) to read the credit card and check the credit card usage limit and validity to allow for post-payment of sales. In addition, the CD of the bank reads the credit card information to verify the credit card holder's account contents, and pays cash or provides financial services such as transfers.

However, a credit transaction using a credit settlement means such as the above-described credit card has a problem that when a user loses a credit settlement method, another person who has acquired the credit settlement method can easily make illegal credit transactions using it. In order to solve such a problem, Korean Patent Laid-Open Publication No. 2001-0025234 (published date 2001.4.6) also discloses a method of verifying identity using fingerprint information stored in a credit card instead of a credit card user's password. However, such a conventional method cannot carry out a credit transaction when a credit card is lost because it must be carried with a credit card. In addition, the conventional method described above has a problem in that, when the credit card is lost, the fingerprint information stored in the credit card is also lost, and thus the credit information and the fingerprint information may be misused.

In order to solve the above-mentioned problem, another conventional credit transaction system proposes a system for verifying a user using only a fingerprint and making a credit payment. For example, the above-described conventional credit transaction system includes a system disclosed in Korean Patent Publication No. 21054 (Published Date 2003.3.12) and Korean Registered Patent No. 382882 (Registration Date 2003.4.22). The above-described registered patent is described below with reference to a conventional credit transaction system.

1A is a diagram illustrating an example of a conventional authentication system using a fingerprint.

Referring to FIG. 1A, a conventional authentication system includes an authentication terminal 100, a network 120, a payment server 130, and an authentication server 140. The authentication terminal 100 extracts the actual fingerprint information of the user and transmits the extracted fingerprint information to the authentication server 150. The authentication server 140 compares the fingerprint information of the user transmitted from the authentication terminal with the fingerprint information of the pre-stored user, and determines whether the user requesting the payment is a legitimate user. If it is determined that the user who requested the payment is a legitimate user, the payment amount of the user is transmitted to the payment server 130 through the network 120.

In detail, the authentication terminal 100 includes a fingerprint extractor 102, a fingerprint reader 104, an inputter 106, a controller 108, a display 110, and a communication unit 112. The fingerprint extractor 102 directly extracts the user's fingerprint image by scanning or the like, and transmits the extracted fingerprint image to the fingerprint recognition unit 104. The fingerprint recognition unit 104 processes the fingerprint image of the user and converts the fingerprint image into digital fingerprint information. The input unit 106 includes input means such as a keyboard, a keypad, a touch screen, and the like for allowing a user to input data such as numbers and letters. The controller 108 controls the overall operation of the authentication terminal 100. The display 110 displays various output information. The communication unit 112 converts data including the price information of the user and the extracted fingerprint information of the user into a protocol suitable for the network 120 and transmits the data to the authentication server 140.

The authentication server 140 includes a communication unit 142, a control unit 144, a first memory 146, and a second memory 148. The communication unit 142 converts data transmitted through the network 120 into a data format used by the authentication server 140, and transmits data transmitted from the authentication server 140 according to the protocol of the network 120. Do it. The fingerprint information of the user is stored in the first memory 146. The controller 144 controls the overall operation of the authentication server 140. In particular, the controller 144 compares the fingerprint information of the user received from the authentication terminal 100 with the fingerprint information read from the first memory 146 to request a payment. Determine if you are a legitimate user. When the fingerprint information of the user received from the authentication terminal 100 and the fingerprint information read from the first memory 146 are different, the second memory 148 stores the fingerprint information of the user. With this arrangement, the user can make a credit transaction using his fingerprint without having a credit card.

Figure 1b is a flow chart schematically showing a conventional authentication method using a fingerprint.

Referring to FIG. 1B, the payment requester inputs a payment amount of the user through the input unit of the authentication terminal (S102). The fingerprint extractor and the fingerprint recognizer of the authentication terminal extract the fingerprint information of the user and transmit the extracted fingerprint information to the authentication server through the communication unit (S104 and S106). The controller of the authentication server reads the fingerprint information of the user stored in the first memory (S108), and determines whether the fingerprint information received from the authentication terminal and the user's fingerprint information read from the first memory match (S110).

When the two fingerprint information in step S110 coincides, the authentication server transmits the user's payment amount by allowing the authentication terminal to be connected to the payment server through the network (S114). If the two fingerprint information are different in step S110, the fingerprint information of the user is extracted again in step S104, and it is determined whether the newly extracted fingerprint information and the fingerprint information read from the first memory match. If the fingerprint information does not match even if the above process is repeated N times, the controller determines that the user is not a legitimate user and stores the fingerprint information of the user in the second memory (S112).

When the authentication terminal is connected to the payment server in step S114, the payment server determines whether the payment amount requested by the user is within the user's limit amount (S116). As a result of the determination in step S116, if the settlement amount is within the limit amount, the settlement server performs settlement processing (S118). On the other hand, as a result of the determination in step S116, if the payment amount exceeds the limit amount, the payment server transmits the information about it to the authentication terminal, the control unit of the authentication terminal displays the information on the display unit (S120). Through this process, the user's fingerprint information is stored in the first memory of the authentication server, and then the user is authenticated by comparing the fingerprint information of the user stored in the first memory with the fingerprint information extracted directly from the user, and the user's purchase amount is calculated. Make a payment.

As such, as the modern society enters the credit society, most of customers pay for purchases using a credit card when purchasing goods or services. In addition, many credit card companies are also working to earn points to increase the card usage of customers. There are various forms of earning points, such as affiliate credit cards, petty cards, and magnetic cards.

However, the surge in credit and customer card issuance has increased the hassle of having too many cards. In addition, in the case of purchasing customers of large stores, there is a problem in that it presents an inconvenience while presenting the card while holding the purchased goods in the container at the purchase price payment.

In addition, in the conventional credit settlement system and method, fingerprint information may be leaked between the authentication terminal and the authentication server or payment server. If the fingerprint information is leaked, there is a disadvantage that damage of the credit transaction through false authentication may occur. To solve this problem, the password can be used to enhance the security of sending and receiving information in the system. However, such a conventional method requires a long time to call the hash function, which requires a long time for authentication. There is a disadvantage that it is difficult to apply a security algorithm using a password to fingerprint information slightly different for each input.

The present invention was derived to solve the above-described problem, an object of the present invention is to search for and identify customers using fingerprint recognition technology to perform credit card payments without a separate card medium, and additionally accumulate customer points It is to provide possible systems and service methods.

Another object of the present invention is to provide a credit payment method and system using fingerprint information which can prevent theft by the loss of credit payment means such as a credit card or a credit card with a fingerprint information or a mobile phone with a credit card.

Still another object of the present invention is to provide a credit settlement method and system using a fingerprint that can be applied to a business that has a large store or chain store and needs to manage customers in each store integrally.

In order to achieve the above object, according to an aspect of the present invention, in the method for providing a credit payment service using the fingerprint of the buyer in a credit settlement device installed in a merchant that sells goods or services, the fingerprint of the buyer Scanning, generating fingerprint feature data from the fingerprint, transmitting fingerprint information including the fingerprint feature data to the fingerprint search server, customer information and credit card information corresponding to the fingerprint information from the fingerprint search server Receiving a credit card payment authorization for the goods or services purchased by the buyer using a credit card company computer system using the credit card information, and receiving a payment approval response signal from the credit card company computer system. Comprising the steps of: searching for the fingerprint The server extracts a serial number corresponding to the fingerprint information from a fingerprint database and extracts the customer information and credit card information corresponding to the serial number from a relational database. have.

In a preferred embodiment, the credit settlement method requires the transmission of a one time template key (OTT key) to the fingerprint search server, receiving the OTT key from the fingerprint search server, the fingerprint Generating a one time template for a fingerprint (OTT) combining information and the OTT key, and transmitting the fingerprint information encrypted by the OTT to the fingerprint search server, wherein the fingerprint is stored. The search server extracts the OTT key from the OTT, determines the validity of the extracted OTT key, and if the OTT key is valid, searches for information matching the fingerprint information in the fingerprint database.

The fingerprint search server may use a one-to-one (1: N) fingerprint search method in the fingerprint database.

The fingerprint database stores the serial number and the plurality of fingerprint templates, and the relational database integrates, encrypts and stores the member number, the credit card information, and the fingerprint template corresponding to the serial number into one data. It features.

The fingerprint search server may compare the fingerprint template stored with the credit card information with the fingerprint information of the accessor in response to a request for return of the credit card information of the accessor including the administrator.

The fingerprint search server may include a plurality of fingerprint databases, a distributor for performing a parallel query on the plurality of databases, and a plurality of fingerprint search engines.

In addition, the credit settlement method further comprises the step of requesting the points earned to the point earning server for the points earned for the goods or services purchased by the buyer.

According to another aspect of the present invention, a system for providing a credit settlement service using a fingerprint of a purchaser installed in a merchant that sells a product or service, comprising: a memory for recording a program, and coupled to the memory to provide the program; A processor for performing a scan, wherein the processor scans the purchaser's fingerprint, generates fingerprint feature data from the fingerprint, and transmits fingerprint information including the fingerprint feature data to the fingerprint search server; Receive customer information and credit card information corresponding to the fingerprint information from the fingerprint search server, request credit card payment authorization for goods or services purchased by the buyer using a credit card company computer system using the credit card information; , Credit card company computer system Receiving a payment approval response signal from the fingerprint search server, wherein the fingerprint search server extracts a serial number corresponding to the fingerprint information from a fingerprint database, and extracts the customer information and credit card information corresponding to the serial number from a relational database; A credit settlement system using fingerprint information can be provided.

In a preferred embodiment, the credit settlement system requests the transmission of a one time template key (OTT key) to the fingerprint search server, receives the OTT key from the fingerprint search server, and transmits the fingerprint information to the fingerprint search server. Generate a one time template for a fingerprint (OTT) combining the OTT key and transmit the fingerprint information encrypted with the OTT to the fingerprint search server, wherein the fingerprint search server transmits the OTT key in the OTT. Extract, determine the validity of the extracted OTT key, and if the OTT key is valid, search for information matching the fingerprint information in the fingerprint database.

Meanwhile, the present invention provides a method and system for performing a credit settlement service using fingerprint information, but the present invention is not limited to such a configuration. That is, at least one living body obtained by the present invention based on human physiological or behavioral characteristics such as face recognition, voice, iris, retina, palmistry, signature, vein, key stroke, gait, DNA, etc. It is apparent to those skilled in the art that the recognition information can be used appropriately.

Next, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.

2A is a diagram schematically showing a configuration to which a credit settlement service using fingerprint information according to an exemplary embodiment of the present invention can be applied.

Referring to FIG. 2A, a configuration for a credit payment service using fingerprint information basically includes a credit settlement device 200 in which a fingerprint payment terminal 201 is coupled, a fingerprint search server 220, and a credit card company computer system 250. It includes. In addition, the configuration may further include a point of sale (POS) server 240 and the point earning server 260.

The fingerprint payment terminal 201 includes a fingerprint scanning unit for scanning a fingerprint of a customer, a keypad for inputting a member number, etc., a display for displaying customer input information or credit payment processing information, and a card such as a member / customer card. And a user interface device having a card reader for reading information.

The credit settlement apparatus 200 includes a fingerprint search client 202, a POS client 204, and a credit settlement processor 206. In addition, the credit settlement device 200 may include a pointer accumulation processing unit 208. The fingerprint search client 202 transmits fingerprint information of a customer who purchased a product or service to the fingerprint search server 220 through the Internet, a communication network, or an intranet 360. In this case, the fingerprint information is converted into a one time template for a fingerprint (OTT) for security, combined with a one time template key (OTT key) received from the fingerprint information server 220, and thus the fingerprint information. May be sent to the server 220. To this end, the credit settlement device 200 may include a fingerprint encryption unit 210.

The POS client 204 works with the POS server 240 to transmit and receive data such as customer information and goods or service information purchased by the customer. In addition, the POS client 204 may include a WebPOS having an Internet connection function when combined with the POS server 240 through the Internet.

The credit settlement processing unit 206 requests the credit card payment approval for the goods or services previously purchased by the customer using the credit card information or the credit payment information of the customer, and the approval response thereto. Serves to receive. A value added network (VAN), a dedicated network or a security network may be used between the credit settlement processor 206 and the credit card company computer system 250.

The point earning processing unit 208 serves to request the customer to earn points to the point earning server 260 such as the seller to extract the corresponding point earning information for the goods or services purchased by the customer. This point accumulation is performed when the customer's fingerprint search is valid.

Next, the fingerprint search server 220 includes a search server distributor 221, a fingerprint search engine 223, a fingerprint database (FDB) 225, a database management system 227, and a relational database (RDB) 229. In addition, the fingerprint search server 220 may include a fingerprint processor 230 that interacts with the fingerprint encryption unit 210 of the credit settlement device 200.

That is, the fingerprint search server 220 includes a fingerprint search engine 223 that is simultaneously run on several servers to store and manage credit payment information of a large customer. Specifically, the fingerprint search server 220 distributes the search function through a plurality of fingerprint search engines 223 simultaneously executing parallel queries from the search server distributor 221 to the fingerprint database 225 in which the large fingerprint template is stored. Get quick search results for

The database management system (DBMS) 227 recovers the fingerprint database using information such as serial number, fingerprint template, etc. stored in the relational database RDB by a recovery program when the fingerprint database FDB fails. DBMS 227 is responsible for managing credit card information, including at least enrolled fingerprint information. That is, the DBMS 227 manages the serial number and fingerprint template stored in the FDB 225 and the member number, credit card information, and fingerprint template stored in the RDB. Membership numbers, credit card information, and fingerprint templates stored in the RDB are encrypted and stored as one data. Therefore, even an administrator can obtain credit card information by entering valid fingerprint information combined with current credit card information in order to obtain the customer's credit card information. This prevents an administrator or the like from arbitrarily manipulating the customer's credit card information.

For example, credit payment information including each customer's membership number, credit card information, and fingerprint template is made as shown in Table 1 below. In Table 1 below, the fingerprint template represents, for example, fingerprint feature point data registered when a customer subscribes to a service. In addition, the data structure of Table 1 represents the logical table structure of the RDB.

In Table 1 above, the credit card information, membership number and fingerprint template are key member information stored in a relational database. This key member information is encrypted and stored, and even system administrators are protected so that they can not search the contents arbitrarily. In addition, the credit information, membership number and fingerprint template are integrated into one data and encrypted to prevent division operation.

Also in Table 1, the serial number is a reference number having an association with the fingerprint database (FDB). That is, the system returns a serial number when a fingerprint is retrieved from the FDB, and the serial number is used to extract customer information from the RDB. A unique number is a unique number that can identify a customer and uses a social security number similar to the existing case. Using this unique number, not only one-to-one (1: N) fingerprint search method but also one-to-one (1: 1) fingerprint authentication service can be easily applied. The additional information records various additional information of the customer such as an address. This item is not required.

Credit card information records the credit card number and expiration date. As this information is important to be secured as mentioned above, it must be encrypted and recorded. Credit card information includes a plurality of credit card information, if you want to use multiple credit cards with one fingerprint registration. Membership number is for earning customer points and linking CRM. This membership number is stored encrypted like credit information. In various embodiments according to the present invention, the member number may be omitted without being included in an essential item.

The fingerprint template includes feature data for fingerprints taken from the customer upon registration of the customer's service. This fingerprint template is stored with two inputs for one fingerprint for the accuracy of the search. In addition, the fingerprint template may be separately stored for the purpose of repairing damage to the fingerprint database FDB. In addition, the fingerprint template is used to perform a comparison with the fingerprint information entered in order to prevent the administrator from fraud when extracting credit information. In addition, the fingerprint template may be used for user authentication when the customer company wants a one-to-one fingerprint authentication method.

This customer information DB structure can be used to prevent unauthorized administrators. Specifically, since the fingerprint feature data and the serial number are stored and retrieved in the fingerprint database FDB, important customer credit information is stored in the RDB. RDB data that can be easily accessed by administrators is a vulnerable part that can be caused by the administrator. Therefore, the assumptions that can be made by the administrator are explained based on Table 1 above, and security measures are set accordingly. Assume the manager is Gil-dong Hong.

First, the fingerprint data of the manager Hong Gil-dong is registered as serial number 2. The administrator copies Hong Gil-soon's encrypted credit / fingerprint information to the corresponding data in Hong-gil-dong. The administrator tries to make a credit payment with your fingerprint. The serial number retrieved is number 2, and the credit information in the record is the data of Hong Gil-soon. Hong Gil-soon's card information is obtained by the administrator's fingerprint. Through the above procedure, the administrator can make a fraudulent payment. It is also possible to replace Hong Gil-soon's record serial number with his own serial number.

In this case, the system according to the present invention compares the fingerprint template stored with the credit information with the fingerprint characteristic data of the currently input fingerprint template again before returning the credit information, so as to prevent the administrator's fraud. Check. Thus, in the present invention, the administrator is prevented from being denied in advance.

In addition, the fingerprint processing unit 230 of the fingerprint search server 220 interacts with the fingerprint encryption unit 210 of the credit settlement device 200 in order to increase the security of the transmission and reception of the fingerprint information. That is, the fingerprint processing unit 230 transmits the OTT key according to the request of the fingerprint encryption unit 210, receives the OTT generated and transmitted by the fingerprint encryption unit 210, separates the OTT key, and then validates the OTT key. The fingerprint information is retrieved from the database accordingly. A fingerprint search procedure for customer verification will be described below with reference to FIG. 4A and the like.

Next, the POS server 240 records and stores the customer information and the customer's purchase information in the relational database 244 in cooperation with the POS client 204. The POS server 240 includes a database management system (DBMS) 242, which is a kind of software system, configured to configure and apply a database 244 for customer management. The POS server 240 may also include a subscriber database or subscriber server that receives service subscription information from customers and stores and manages the service subscription information.

The credit card company computer system 250 includes an existing credit card company computer system. In addition, the point earning server 260 includes an existing point earning server, such as a seller that provides and manages points allocated to goods or services to the purchaser.

2B is a module configuration diagram illustrating a module configuration of a credit settlement device according to an embodiment of the present invention.

Referring to FIG. 2B, the credit settlement apparatus includes a transmission / reception processing module 292 for processing wired / wireless data communication such as fingerprint information transmission and response, credit card information transmission and response, and the like with a fingerprint search server and a credit card company computer system, and a fingerprint search. A fingerprint processing module 294 for generating fingerprint information to be transmitted to a server and receiving a fingerprint search result from a fingerprint search server, and a POS processing module 296 for processing customer information with a POS server and goods or service information purchased by a customer. And a credit card processing system 298 that processes the credit card company computing system and the customer's credit card payment. In addition, the credit settlement device may further include a point earning processing module (not shown) that processes the point earning server and the point earning of goods or services purchased by the customer. Looking at the overall configuration of the credit settlement device through such an application module as follows.

The credit settlement device can use various operating systems (OS) as the OS of the system. The OS provides a high level command to an application program interface (API) 270 to control the operation of each application module 290.

The credit settlement device includes a high level command processor 272 for identifying each application module according to a high level command provided from the API 270, decoding the high level command, and providing the same to the application module. The application module controller 280 controls the operation of the application module 290 according to the instructions provided from the high level command processor 272. That is, the high level instruction processor 272 identifies whether the corresponding application module 290 exists according to the high level instruction provided through the API 270, and if the corresponding application module 290 exists, the corresponding application module ( Decoded by the command recognized in 290 to be transmitted to the corresponding mapping unit or to control the transmission of the message. Here, the application module 290 includes a transmission and reception processing module 292, a fingerprint processing module 294, a POS information processing module 296 and a credit settlement processing module 298. Also may further include a point earning processing module. The application module controller 280 includes mapping units 281, 283, 285, and 287 and interface units 282, 284, 286, and 288 for each application module, respectively.

The transmission / reception processing module mapping unit 281 receives the OTT key and the fingerprint search result from the fingerprint search server from the high level command processing unit 272 and transmits the OTT, and transmits credit card payment authorization information to the credit card company computer system. And receive a high level command for receiving credit card payment approval response information, and map it to a device level command that can be processed by the transmission / reception processing module 292, and transmits and receives it through the transmission / reception processing module interface 282. Provided at 292. The transmission / reception processing module 292 may include a physical transmission interface for data transmission and reception with the fingerprint payment terminal. In this case, the physical transport interface includes a serial or parallel interface, a USB port, and the like.

The fingerprint processing module mapping unit 283 is a part for processing data related to fingerprint search of the fingerprint search server and the customer. That is, the fingerprint processing module mapping unit 283 receives a high level command from the high level command processing unit 272 to generate the fingerprint feature point data from the customer's fingerprint and to generate the fingerprint information as the OTT, if necessary, to process the fingerprint. The module 294 maps to a device level command recognizable and provides it to the fingerprint processing module 294 through the fingerprint processing module interface 284.

The POS information processing module mapping unit 285 is a part for processing data related to a POS server, customer information, and customer purchase information. That is, the POS information processing module mapping unit 285 receives a high level command for generating customer information and customer purchase information from the high level command processing unit 272, so that the POS information processing module 296 can recognize the device. It maps to a level command and provides it to the POS information processing module 296 through the POS information processing module interface 286.

The credit settlement processing module mapping unit 287 is a portion for processing data related to the credit card company computer system and the purchaser's credit card authorization. That is, the credit settlement processing module mapping unit 287 extracts the credit card information of the buyer from the high level instruction processing unit 272 and receives a high level instruction for obtaining the credit card settlement approval using the credit card processing module (272). 298 maps to a device level command recognizable, and provides it to the credit settlement processing module 298 via the credit settlement processing module interface 288.

The point accumulation processing module mapping unit is a part for processing data related to the point accumulation of the point accumulation server and the buyer's product or service. That is, the point earning processing module mapping unit extracts the purchase information and the purchaser information of the buyer from the high level command processing unit 272 and receives a high level command for requesting the point earning using the same, and the point earning processing module can recognize it. Mapping to a device level command that is present, it can be provided to the point earning processing module through the point earning processing module interface.

2C is a signal flow diagram illustrating a procedure of performing a credit settlement service according to an exemplary embodiment of the present invention.

Referring to FIG. 2C, when the purchaser's fingerprint information and purchase details are input to the fingerprint payment terminal coupled to the credit settlement device (step S201 and step S203), the credit settlement device requests the fingerprint search server to search for the fingerprint of the buyer ( Step S205). At this time, the fingerprint information may be encrypted by the OTT combined with the OTT key and transmitted from the credit settlement device to the fingerprint search server.

Upon receiving the fingerprint search request signal, the fingerprint search server searches the fingerprint database for a fingerprint template corresponding to the fingerprint feature data of the purchaser in a one-to-multiple (1: N) manner according to the fingerprint search method according to the present invention (step S207). At this time, the fingerprint search server searches, for example, 10,000 fingerprints in 0.5 seconds by performing a parallel query to a plurality of fingerprint search engines through a search server distributor. The information retrieved from the fingerprint database includes a fingerprint template corresponding to the purchaser's fingerprint information and membership number and credit card information combined into one piece of data with the fingerprint template. In addition, the fingerprint retrieval server returns the serial number of the fingerprint template retrieved corresponding to the purchaser's fingerprint information from the fingerprint database, and extracts customer information and credit card information corresponding to the returned serial number from the relational database (step S209). . Thereafter, the fingerprint retrieval server transmits the customer information and the credit card information to the credit settlement device (step S211).

Upon receiving the customer information and the credit card information, the credit settlement device transmits the customer information and the customer's purchase information to the POS server (step S213). Step S213 may be set to update once in a predetermined period. That is, step S213 may be omitted. In addition, the credit settlement apparatus that has received the customer information and the credit card information requests the credit card settlement approval for the purchase of the goods or services of the buyer by the credit card company computer system (step S215). The credit card company computer system performs an approval procedure by a predetermined routine (step S217), and then sends a response signal to the credit settlement approval request to the credit settlement device (step S219). Thereafter, the credit settlement apparatus finally processes the credit card settlement for the purchase price of the buyer (step S221). In addition, the credit settlement device requests the point accumulation to the point earning server for the points of the goods or services for which the point accumulation is set among the goods or services purchased by the customer (step S223).

3 is a diagram schematically showing a configuration to which a credit settlement service using fingerprint information according to another embodiment of the present invention can be applied.

Referring to FIG. 3, a configuration for a credit settlement service according to the present invention is combined with a fingerprint search server 320 and at least one credit card company's computer system 370 or point earning server 380 to provide a credit settlement service. The credit settlement server 300, a customer management (POS: Point Of Sale (340)) server for managing the customer's purchase information and goods / services history and the like in real time, and a credit payment client 350. The credit settlement client 350, the credit settlement server 300, the fingerprint search server 320, and the POS server 340 are coupled by at least one communication connection means of the Internet, a wired / wireless communication network, and an intranet.

The credit settlement server 300 includes a credit settlement processor 310. In addition, the credit settlement server 300 may include a point accumulation processing unit 330. In addition, the credit settlement server 300 is a control unit for controlling the signal processing of the entire system and the communication interface for transmitting and receiving data with the fingerprint search server 320, credit settlement client 350 and POS server 340, RAM (RAM) And a memory, such as a ROM, and a user interface for access to the administrator. Since the communication interface, the controller, the memory, and the user interface are obvious to those skilled in the art, detailed descriptions thereof will be omitted. As described above, the present invention includes a configuration in which the credit settlement apparatus of FIG. 2A is divided into a credit settlement client and a credit settlement server.

For example, the credit settlement client 350 includes a fingerprint search client 356 including a fingerprint encryption unit 450 and a POS client 352. The fingerprint encryptor 450 transmits secure fingerprint information between the fingerprint search server 320 and requests the fingerprint search server 320 for the fingerprint search of the customer for customer authentication. The fingerprint search server 320 searches for matching information by comparing the fingerprint information received from the fingerprint search client 356 with the fingerprint template stored in the fingerprint database (FDB) 322. At this time, when matching information is found, the fingerprint search server 320 returns a serial number stored together with the found fingerprint template. Thereafter, the fingerprint search server 320 extracts the customer information including the credit card information from the relational database 325 using the returned serial number and transmits it to the credit settlement client 350. In addition, the credit settlement client 350 requests the buyer's credit card payment approval from the credit card company's computer system using the received credit card information and receives a response. As described above, in the present invention, the credit settlement apparatus can be separately applied to the credit settlement client and the credit settlement server, as in the case of applying to a large-scale store or the like.

Meanwhile, the aforementioned credit settlement client 350 and the POS server 340 may be integrally formed. For example, depending on the high performance of the computer system or the size of the store, the POS server 340 may be included in the credit settlement client 350. In this case, the credit settlement client 350 includes the functionality of the POS server 340. In addition, the credit settlement client 350 may include a plurality of fingerprint payment terminal 354.

4A is a block diagram illustrating a fingerprint encryptor and a fingerprint processor according to an exemplary embodiment of the present invention. 4B is a block diagram illustrating a fingerprint encryptor, a web server, and a fingerprint processor according to a modified example of the preferred embodiment of the present invention. 4A and 4B schematically illustrate signal processing between the components by arrows.

Referring to FIG. 4A, in the signal processing procedure for customer authentication according to the present invention, the fingerprint processing unit 400 in the credit settlement server may interact with the fingerprint encryption unit 450 in the credit settlement client to obtain the fingerprint information for the credit settlement. Securely transmitting and receiving data, and authenticating the customer as a legitimate user based on the fingerprint information of the customer extracted from the fingerprint processing unit 400 in the credit settlement server.

To this end, the fingerprint encryption unit 450 may include a fingerprint input unit 451, a feature data extractor 452, an OTT key request unit 453, an OTT key receiver 457, an OTT generator 454, and an OTT encryption unit 455. And a communication interface 456. The fingerprint input unit 451 scans the fingerprint of the customer for customer authentication from the credit settlement server 400. The feature data extractor 452 extracts fingerprint feature data from the input fingerprint. The OTT key request unit 453 serves to request a one-time template key (OTT key) to the credit settlement server 400. The OTT key receiving unit 457 serves to receive the OTT key transmitted from the credit settlement server. The OTT generator 454 combines the received OTT key and fingerprint feature data to generate a one-time fingerprint template (OTT). The OTT encryption unit 455 encrypts the OTT in a predetermined manner. The communication interface 456 transmits and receives data with the credit settlement server 400.

In addition, the fingerprint processor 400 may include an OTT key generator 401, an OTT key storage 402, an OTT key transmitter 403, a communication interface 404, an OTT receiver 405, an OTT decoder 406, and an OTT. And a key extracting unit 407, an OTT key validity determining unit 408, a fingerprint searching unit 409, and an OTT key deleting unit 410. The OTT key generator 401 generates an OTT key according to the OTT key request of the fingerprint encryptor 450. The OTT key storage unit 402 serves to store the generated OTT key. The OTT key transmitter 403 transmits the generated OTT key to the fingerprint encryptor. The communication interface 404 transmits and receives data with the fingerprint encryptor. The OTT receiver 405 serves to receive the encrypted OTT transmitted from the fingerprint encryptor. The OTT decryption unit 406 decrypts the encrypted OTT received and restores the original OTT. The OTT key extracting unit 407 serves to extract the restored OTT key. The OTT key validity determining unit 408 determines the validity of the OTT key by comparing the OTT key stored in the OTT key storage unit 402 and the OTT key extracted by the OTT key extracting unit 407. When the OTT key is valid, the fingerprint search unit 409 compares the registered fingerprint characteristic data with the fingerprint characteristic data stored in the input and authenticates the user's access by the fingerprint. If there is a mismatch, it is denied access. The OTT key deletion unit 29 deletes the OTT key used for the OTT key validity determination after the search processing is completed by the fingerprint search unit 409 and newly renewed by the OTT key generation unit 401 at the next fingerprint search. It is used to use the generated OTT key.

The one-time fingerprint template (OTT) mentioned above is a term used according to the concept of templated fingerprint feature data, which is the idea of the present invention, and used once. In addition, the one-time template key (OTT key) is one of the elements constituting the OTT, and is a target of comparison for determining validity and defines a variable that changes every time the fingerprint search. This will be described in detail with reference to FIGS. 8 and 9 below.

On the other hand, the present invention is a credit payment client that requires the customer's fingerprint search in order to access the fingerprint search server and the credit card system based on the customer's credit card information, the credit card company computer system to approve payment for the customer's purchase price It may be made to include a requesting credit settlement server. Thus, in the present invention, it is preferable that the credit settlement client is directly connected to the credit settlement server through a leased line or the like, but the credit settlement client can perform various functions such as Internet searching while fingerprint input like a desktop computer with a fingerprint input device. In the case of a customer computer system that can be used or when a user is provided with a web page from a separate web server using the OTT authentication method according to the present invention, the present invention is respectively coupled with them between a credit payment client and a credit payment server. The web server 470 may further include. In this case, the web server may be integrated into the credit settlement server or separated into a separate device from the credit settlement server. A case where a web server is included will be described below with reference to FIG. 4B.

Referring to FIG. 4B, in the fingerprint retrieval procedure for customer authentication according to the present invention, the web server 470 respectively coupled with the fingerprint encryption unit 450 in the credit payment client and the fingerprint processing unit 400 in the fingerprint retrieval server, respectively. It includes. The web server 470 is coupled to the fingerprint encryption unit 450 and the fingerprint processing unit 400, respectively, to transmit and receive data with them, respectively, and the first and second communication interfaces 473 and 474, and the first and second communication interfaces ( A data relay 471 coupled to 473 and 474, and a search result receiver 472 coupled to a second communication interface 474. The data relay unit 471 relays data between the fingerprint encryption unit 450 and the fingerprint processing unit 400. The authentication result receiver 472 serves to receive the authentication result from the fingerprint processor 400 in the credit settlement server.

In addition, the web server 470 includes a server that provides a web page that the user is actually using. For example, the web server 470 includes a web server such as a shopping mall site or a banking site. Of course, although not shown in the figure, the fingerprint encryption unit 450 in the fingerprint search client accesses the web server 470 to retrieve the result of the fingerprint search of the customer from the fingerprint processing unit 400 in the credit settlement server linked to the web server 470. It includes a web browser that can receive. In this case, the web server 470 further includes a web page transmission unit for transmitting the web page to the client when receiving a result that the user's fingerprint search is completed from the fingerprint processing unit 400 in the credit settlement server.

5A is a flowchart schematically illustrating a credit payment method using fingerprint information according to an exemplary embodiment of the present invention. In the present embodiment, it is assumed that the fingerprint search server is closely coupled with the credit settlement server.

Referring to FIG. 5A, a credit settlement server first receives fingerprint information of a customer who purchases a product or a service from a credit settlement client through the Internet, a communication network, or an intranet. At this time, it is preferable to receive the fingerprint information of the customer by the OTT security method according to the present invention (step 501). Here, the OTT security scheme means that the credit settlement server receives a one-time fingerprint template (OTT) combining the one-time template key (OTT key) and fingerprint information from the credit payment client. On the other hand, the credit settlement client also transmits the information about the payment price according to the customer's purchase of goods or services to the credit settlement server.

The credit settlement server then retrieves the registered fingerprint template of the customer through the fingerprint search server using the fingerprint information from which the OTT key is removed from the one-time fingerprint template (step 503). At this time, the credit settlement server quickly retrieves the credit settlement information including the registered fingerprint information that matches the fingerprint information of the customer through a parallel query in the fingerprint search server. On the other hand, if the credit card information stored with the registered fingerprint template that matches the fingerprint information of the customer does not exist, the credit settlement server requests the customer to re-enter the fingerprint or request a new member registration.

When a fingerprint fingerprint server retrieves an enrolled fingerprint template from the fingerprint database that matches the customer's fingerprint information, the credit settlement server uses the serial number stored corresponding to that enrolled fingerprint template to credit the credit card information and membership number in the relational database. The payment information is extracted (step 505). At this time, if two or more fingerprint templates are found, the credit settlement server selects the fingerprint information having the highest matching rate with the fingerprint information of the customer according to a predetermined method, or obtained from the customer in conjunction with the credit settlement client or POS server. The relevant credit settlement information is extracted using other customer information such as customer identification number. If no valid credit settlement information exists, the credit settlement server performs a procedure according to a predetermined method such as sending an error message to the credit settlement client, requesting a user to re-enter a fingerprint, requesting a new member to register, and the like.

After completing the fingerprint search as a valid user through the above process, the credit settlement server extracts the customer's credit card information from the credit payment information (step 507). Thereafter, the credit settlement server requests credit card payment authorization for the purchase price included in the purchase information of the customer obtained from the credit settlement client through the credit card company's computer system (step 509). The credit settlement server receives an authorization response signal for the credit card payment of the customer from the computing server of the credit card company (step 511). It is preferable that an existing encryption method or security method is applied to data transmission and reception between a credit settlement server and a computer system of a credit card company. The credit settlement server that has secured the credit through the above process transmits a credit card settlement completion message to the credit settlement client (step 513). At this time, the customer can view the corresponding message on the display of the fingerprint payment terminal coupled to the credit payment client.

5B is a flowchart schematically illustrating a credit payment method using fingerprint information according to a modification of a preferred embodiment of the present invention.

Referring to FIG. 5B, if the credit payment information corresponding to the fingerprint of the customer is retrieved in step 505 of FIG. 5A and the customer is approved as a valid customer, the credit settlement server proceeds with the credit payment process and at the same time obtains from the credit payment client The point information of the product / service of the point to the point earning server to request the points earned.

In detail, the point accumulation processing unit extracts point information from the product / service purchase information of the customer who subscribes to the credit settlement service (step 521). Such point information is preset by a manufacturer or a seller of a product, and is easily obtained by product / service management information including seller information, product / service code information, price information, point information, and the like for each product / service. Also, if necessary, point information can be obtained by interworking with a POS server.

Thereafter, the point accumulation processing unit transmits the point information of the customer to the product / service seller server corresponding to the product or service purchased by the customer (step 523). And the approval information for the point accumulation of the customer from the goods / service seller server receives (step 525). The point accumulation processing unit that has performed the point accumulation process through the above process transmits the corresponding information to the credit settlement server. The credit settlement server transmits the point accumulation information to the credit settlement client together with the credit card settlement completion message. The credit settlement client displays the point accumulation information together with the credit card settlement approval information on the display of the fingerprint settlement terminal. Meanwhile, the point accumulation may be performed using a separate point accumulation card. In this case, the point earning card includes various cards such as an affiliate credit card, a petty card, and a magnetic card.

6A is a flowchart schematically illustrating a security procedure using a one-time fingerprint template according to a preferred embodiment of the present invention.

Referring to FIG. 6A, the security procedure according to the present invention includes first extracting, by the fingerprint search client, fingerprint feature data from a fingerprint feature data extractor from fingerprint information of a customer input to the fingerprint input unit (step 601). The fingerprint retrieval client requests transmission of the OTT key to the fingerprint processing unit in the fingerprint retrieval server through the OTT key request unit (step 603).

Upon receiving the OTT key request signal from the fingerprint retrieval client, the fingerprint processor generates an OTT key in the OTT key generator in the OTT key processor and stores it first in the OTT key storage (step 604). The OTT key is transmitted to the fingerprint search client through the OTT key transmitter (step 606).

The fingerprint retrieval client that obtains the OTT key from the fingerprint processing unit through the OTT key receiving unit generates the OTT by combining the OTT key received from the OTT key receiving unit and the fingerprint feature data in the OTT generating unit (step 607). The OTT is encrypted through the OTT encryption unit (step 609). Thereafter, the fingerprint search client sends an encrypted OTT to the fingerprint processing unit to request a fingerprint search for customer authentication (step 611).

The fingerprint processing unit receives the encrypted OTT at the OTT receiving unit in the OTT processing unit, decrypts it through the OTT decrypting unit, and separates the original fingerprint information and the OTT key (step 612). Then, the OTT key is extracted from the OTT key extracting unit (step 614). Then, the validity of the OTT key is determined by comparing the OTT key extracted by the OTT key validity determining unit with the OTT key stored in the OTT key storage unit (step 616).

If it is determined in step 616 that the OTT key is valid, the fingerprint search unit searches for a registered fingerprint template that matches the fingerprint characteristic data of the customer (step 618). If the registered fingerprint template whose OTT key is not valid or matching in step 616 or step 618 is not found, the fingerprint processing unit rejects the fingerprint search and transmits the information to the fingerprint search client (step 620). If the fingerprint search is successfully completed in the process, the fingerprint processing unit authenticates the buyer (step 622). The fingerprint search server deletes the OTT key and prepares to use the newly generated OTT key at the next fingerprint search (step 624).

Meanwhile, in the fingerprint search process, the OTT key request from the fingerprint search client to the credit settlement server or the fingerprint search server and the OTT key transmission from the credit settlement server or the fingerprint search server to the fingerprint search client may be performed by HTTP. In this case, there is no need to install an additional application port on the credit settlement server or fingerprint search server side.

In addition, in the fingerprint retrieval process, encryption and decryption of the OTT may be performed in various ways. For example, encryption is performed using a public key based on a public key infrastructure (PKI) for OTT encryption, and a private key when decrypting OTT on a credit settlement server or fingerprint search server. Can be decrypted In addition, OTT encryption and decryption can be performed using a symmetric key.

6B is a flowchart schematically illustrating a security procedure using a one-time fingerprint template according to a modification of one preferred embodiment of the present invention. Descriptions overlapping with the detailed description with reference to FIG. 6A will be omitted.

Referring to FIG. 6B, the security procedure of the customer fingerprint according to the present invention includes a process in which a web server relays data transmission / reception between a fingerprint search client including a fingerprint encryption unit and a fingerprint search server including a fingerprint processing unit in addition to the process of FIG. 6A. The process may further include. Specifically, the web server relays an OTT key request signal (step 603a), an OTT key transmission relay (step 606a), and an encrypted OTT transmission between the fingerprint search client and the fingerprint search server through the data relay unit (step 611a). Perform

In addition, if the OTT key validity determination unit of the fingerprint processing unit determines that the OTT key is valid (step 616) and the fingerprint search is validly performed (step 618), the fingerprint processing unit transmits the result to the web server ( Step 624a). The web server receives the search result at the search result receiving unit and sends it to the credit settlement client as a web page (step 624b). At this time, the credit settlement client includes a customer computer system such as a desktop computer equipped with a fingerprint search client. The customer may request a fingerprint search using the customer computer system while simultaneously using a web service, such as web browsing (step 625).

On the other hand, if the OTT key validity determination unit determines that the OTT key is invalid (step 616) or the fingerprint search unit is rejected (step 618), the fingerprint processing unit transmits the result to the web server ( Step 620a). The web server rejects the customer authentication and sends a fingerprint search rejection message, fingerprint re-entry request message, or new membership message to the customer computer system (step 620b).

7 illustrates a data structure of a one-time template key according to an exemplary embodiment of the present invention.

Referring to FIG. 7, in the aforementioned fingerprint search process, the OTT key generated by the OTT key generation unit in the fingerprint search client includes an index and a GUID (Global Unique ID) added to each index. An index is defined by a serial number, and a GUID is a field defined by a random value of a predetermined length. For example, if the length of the GUID is set to 16 bytes, the kind is about 38 powers of 3.4 * 10, and the probability of generating the same ID is almost zero.

Using such an OTT key, in the fingerprint search procedure according to the present invention, the OTT key used for the previous search may be deleted and a new OTT key may be generated and used for each search. Creating a new OTT key generates a new random value at the new index. For example, a first OTT key is generated in which the random value R1 is added as a GUID to the index "1" during the first search, and the random value R2 to the index "2" during the next (second time) search. Generates the second OTT key added as the GUID, and generates the nth OTT key added with the random value Rn as the GUID at the index " n "

On the other hand, the OTT key generated and used once in the OTT key generation unit is deleted from the OTT key deletion unit after the fingerprint search. Thus, for example, the index with the deleted OTT key among the OTT keys used in the first search can be used again in the subsequent search. For example, an OTT key having a random value Rn at index "1" may be generated.

8 is a diagram showing the data structure of a one-time fingerprint template according to an embodiment of the present invention.

Referring to FIG. 8, in the aforementioned fingerprint search processor, the OTT generated by the OTT generation unit of the fingerprint search client is configured to include the OTT key received from the fingerprint processing unit in the fingerprint search server and the feature data of the fingerprint obtained from the customer. At this time, the OTT does not include a customer identifier (ID) such as a membership number obtained from the customer's membership card or by the customer's direct input. Of course, when the OTT is transmitted from the fingerprint search client to the fingerprint search server, the OTT is transmitted in combination with an appropriate header and customer identifier. The OTT key field of the last field consists of the aforementioned index and GUID of FIG.

Meanwhile, the customer identifier may be used as a means for identifying a customer who purchased a product or service in the case of a one-to-one authentication scheme. That is, in the above-described case, the customer identifier must match the serial number or member number in the customer's essential information obtained from the customer when the customer subscribes to the credit settlement service according to the present invention or the essential information for the credit settlement service.

As described above, in the present invention, the fingerprint search is performed by using the fingerprint feature data when the added OTT key is matched instead of the fingerprint search by the ID and the fingerprint feature data. That is, in the present invention, since the GUID of the OTT key is a random value and each time a search request is made to the fingerprint search server, a newly generated GUID is added to the OTT key. Fingerprint search results from the payment server cannot be obtained. Therefore, security is greatly increased.

9 is a flowchart schematically illustrating a subscription procedure of a credit settlement service using fingerprint information according to an exemplary embodiment of the present invention.

Referring to FIG. 9, a customer who wants to purchase a product or service at a specific store selects to subscribe to a credit settlement service according to the present invention using a user interface device or a customer computer system in the store. Of course, you can subscribe to the service just by filling out the required information on the existing membership card. Then, the credit settlement server, POS server, POS client / WebPOS or separate subscriber server according to the present invention receives the service subscription request signal of the customer (step 901). In the following description, the POS server will be described.

The POS server receiving the customer's service subscription request determines whether there is an input by the membership card (step 903). If there is an entry of the membership card in step 903, essential information of the customer is extracted from the membership card (step 905). If there is no entry of the membership card in step 903, the customer is asked to fill out the membership registration card and the required information of the customer is obtained from the information described in the membership registration card (step 907). The membership registration card includes not only the membership registration card printed on paper but also the online membership registration card displayed on the monitor screen of the customer computer system.

The POS server then extracts the credit card information stored with the customer's fingerprint template from the customer's essential information (step 909). The credit card information includes at least the card number and basic credit card information for the validity period. Fingerprint information is obtained from the customer through the fingerprint inputter of the credit settlement client or the fingerprint inputter coupled to the customer computer system (step 911). The POS server, which has obtained fingerprint information and credit card information from the customer, combines the customer's registered fingerprint information, the member identifier such as the customer's member number, and the credit card information into one of the customer's fingerprint templates and encrypts them (step 913). At this time, it is stored in the fingerprint database along with a predetermined serial number of the customer's fingerprint template. The POS server then stores the encrypted customer's credit payment information in a database via the secured Internet, private line or intranet (step 915).

On the other hand, in the subscription procedure of the credit settlement service according to the present invention may further comprise the step of testing whether the service subscription procedure of the customer was correctly performed. In this test step, the POS server acquires the fingerprint information of the customer through the fingerprint search client and transmits it to the credit settlement server or the fingerprint search server through the fingerprint search client to check whether the customer's credit payment information is stored and registered validly. It includes. Of course, even in this case, the OTT security scheme according to the present invention may be applied. If the customer's credit payment information is not retrieved at the stage of testing the service subscription, the customer is notified of the reason by a predetermined method or the customer is guided to perform the service subscription process again.

The present invention is not limited to the above embodiments, and many variations are possible by those skilled in the art within the spirit of the present invention.

According to the present invention, it is possible to secure identity verification and credit card transactions using their fingerprints that are securely transmitted anywhere without a credit card.

According to the present invention, by making a payment and points earned by fingerprint search without using a credit card when purchasing goods or services, eliminating the inconvenience of having a customer carry a credit card and making a payment by using his fingerprint. You can prevent use.

According to the present invention, it is possible to perform identity verification and credit card payment with a fingerprint of a customer at a business site having a large-scale store or chain store and having to manage customers in each store integrally. Therefore, the customer is provided with the convenience of the transaction and can prevent fraudulent use due to the loss of the credit settlement means such as the credit card.

The present invention can provide a credit payment method and system using a fingerprint search used in a large store and a chain store form.

Figure 1a is a schematic diagram of a conventional authentication system using a fingerprint.

Figure 1b is a flow chart schematically showing a conventional authentication method using a fingerprint.

Figure 2a is a schematic diagram showing a configuration that can be applied to the credit payment service using the fingerprint information according to an embodiment of the present invention.

Figure 2b is a module configuration showing a module configuration of a credit settlement device according to an embodiment of the present invention.

Figure 2c is a signal flow diagram illustrating a procedure of performing a credit settlement service according to an embodiment of the present invention.

3 is a diagram schematically showing a configuration to which a credit payment service using fingerprint information according to another embodiment of the present invention can be applied.

Figure 4a is a block diagram showing a fingerprint encryption unit and a fingerprint processing unit according to an embodiment of the present invention.

4B is a block diagram illustrating a fingerprint encryption unit, a web server, and a fingerprint processing unit according to a modification of the preferred embodiment of the present invention.

Figure 5a is a flow chart schematically showing a credit payment method using fingerprint information according to an embodiment of the present invention.

5B is a flowchart schematically illustrating a credit payment method using fingerprint information according to a modification of the preferred embodiment of the present invention.

6A is a flow chart schematically illustrating a security procedure using a one-time fingerprint template according to a preferred embodiment of the present invention.

6B is a flow chart schematically illustrating a security procedure using a one-time fingerprint template according to a variation of one preferred embodiment of the present invention.

7 illustrates a data structure of a one-time fingerprint template according to a preferred embodiment of the present invention.

8 illustrates a data structure of a one-time template key according to an embodiment of the present invention.

9 is a flowchart schematically illustrating a subscription procedure of a credit settlement service using fingerprint information according to an exemplary embodiment of the present invention.

<Description of Symbols for Main Parts of Drawings>

200: credit payment device 201: fingerprint payment terminal

202: Fingerprint Search Client 204: Customer Care Client

206: credit settlement processing unit 208: points earning processing unit

210: fingerprint encryption unit 220: fingerprint search server

221: Search Server Splitter 223: Fingerprint Search Engine

225: Fingerprint Database 227: Database Management System

229: relational database 230: fingerprint processing unit

240: customer management server 250: credit card company computer system

260: Earn Points Server

Claims (9)

Claims [1] A method of providing a credit payment service using a fingerprint of a buyer in a credit settlement device installed in a merchant that sells a product or service, the method comprising: Scanning the fingerprint of the buyer; Generating fingerprint feature data from the fingerprint; Transmitting fingerprint information including the fingerprint feature point data to the fingerprint search server; Receiving customer information and credit card information corresponding to the fingerprint information from the fingerprint search server; Requesting credit card payment authorization for goods or services purchased by the buyer using a credit card company computer system using the credit card information; And Receiving a payment approval response signal from the credit card company computer system; Including, The fingerprint search server extracts a serial number corresponding to the fingerprint information from a fingerprint database and extracts the customer information and credit card information corresponding to the serial number from a relational database; Credit payment method using the fingerprint information, characterized in that. The method of claim 1, Requesting transmission of a one time template key (OTT key) to the fingerprint search server; Receiving the OTT key from the fingerprint search server; Generating a one time template for a fingerprint (OTT) combining the fingerprint information and the OTT key; And The method may further include transmitting the fingerprint information encrypted with the OTT to the fingerprint search server. The fingerprint search server extracts the OTT key from the OTT, determines the validity of the extracted OTT key, and if the OTT key is valid, searches for information matching the fingerprint information in the fingerprint database. Credit payment method using the fingerprint information, characterized in that. The method of claim 1, The fingerprint retrieval server using the fingerprint information, characterized in that using a one-to-one (1: N) fingerprint search method in the fingerprint database. The method of claim 1, The fingerprint database stores the serial number and the plurality of fingerprint templates, and the relational database integrates, encrypts and stores the member number, the credit card information, and the fingerprint template into one data corresponding to the serial number. Credit payment method using fingerprint information. The method of claim 1, And the fingerprint search server compares the fingerprint template stored with the credit card information with the fingerprint information of the accessor in response to a request for return of the credit card information of the accessor including an administrator. The method of claim 1, The fingerprint search server includes a plurality of fingerprint databases, a distributor for performing parallel queries on the plurality of databases, and a plurality of fingerprint search engines. The method of claim 1, Requiring points earned by the point earning server for the points earned for the goods or services purchased by the buyer Credit payment method using the fingerprint information, characterized in that it further comprises. In the system that is installed in the merchants selling goods or services to provide a credit settlement service using the fingerprint of the buyer, Memory for recording a program; A processor coupled to the memory to perform the program; The processor by the program, Scans the purchaser's fingerprint, generates fingerprint feature data from the fingerprint, transmits fingerprint information including the fingerprint feature data to the fingerprint search server, customer information and credit corresponding to the fingerprint information from the fingerprint search server Receiving credit card information, requesting credit card payment authorization for goods or services purchased by the buyer from a credit card company computer system using the credit card information, and receiving a payment approval response signal from the credit card company computer system, The fingerprint search server extracts a serial number corresponding to the fingerprint information from a fingerprint database and extracts the customer information and credit card information corresponding to the serial number from a relational database; Credit payment system using a fingerprint information, characterized in that. The method of claim 8, Request for transmission of a one time template key (OTT key) to the fingerprint search server, receive the OTT key from the fingerprint search server, and combine the fingerprint information with the OTT key. One Time Template for a fingerprint, and transmits the fingerprint information encrypted with the OTT to the fingerprint search server, the fingerprint search server extracts the OTT key from the OTT, the validity of the extracted OTT key And if the OTT key is valid, searching for information matching the fingerprint information in the fingerprint database. Credit payment system using a fingerprint information, characterized in that.