KR20070021581A - System and Method for Processing Financial Transaction, Devices for Processing Financial Transaction, Terminals and Recording Medium - Google Patents

Abstract

The present invention relates to a method and a system for processing a financial transaction, wherein the predetermined information storage means includes at least one or more financial transaction information and / or information about a customer who owns the financial transaction means and a token generation program provided in the customer terminal. An information storage step of storing the token generation program information in a predetermined storage medium in association with the token generation program information; A token code providing step of providing a predetermined token code generated by a token generating program included in the client terminal to the server when the client terminal accesses a server on a communication network and performs a predetermined financial transaction; In connection with the storage medium (or storage medium operating means) in the server, the financial transaction means information corresponding to the financial transaction and / or the financial transaction means owned customer information (and / or customer-owned wireless terminal information) Verifying token generating program information and authenticating validity of the token code using the token generating program information; And a financial transaction processing step of processing the financial transaction in accordance with the validity authentication result in the server.

Thereby, more secure financial transactions are possible through predetermined token codes volatilized by time and / or by certain random variables, and financial transaction means information (e.g., financial account information, credit card information, debit card information, cash). More convenient and safe financial transactions are possible without exposing card information, check card information, prepaid card information, electronic money information, etc.).

Financial Transactions, Token Information

Description

Financial transaction processing method and system, financial transaction processing device, financial transaction terminal device, terminal device and recording medium {System and Method for Processing Financial Transaction, Devices for Processing Financial Transaction, Terminals and Recording Medium}

1 is a diagram illustrating a financial transaction processing system according to the present invention.

2 illustrates a configuration of a system for providing a predetermined token agent to a customer terminal according to an embodiment of the present invention.

3 is a diagram illustrating token agent information to be provided to a customer terminal according to an embodiment of the present invention.

4 is a diagram illustrating token agent information to be provided to a customer terminal according to an embodiment of the present invention.

5 is a diagram illustrating an embodiment of providing and mounting a token agent program to a customer terminal according to an embodiment of the present invention.

6 is a diagram illustrating an embodiment of providing and mounting a token agent program to a customer terminal according to an embodiment of the present invention.

7 is a diagram illustrating an information configuration of token agent information stored in the storage medium according to an embodiment of the present invention.

8 is a diagram illustrating an information configuration of customer information stored in the storage medium according to an embodiment of the present invention.

9 is a diagram illustrating an information configuration of financial transaction information stored in the storage medium according to an embodiment of the present invention.

10 is a diagram illustrating an embodiment of a financial transaction processing system using a wireless terminal number according to an embodiment of the present invention.

11 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

12 is a diagram illustrating a token code structure according to an embodiment of the present invention.

13 is a view showing a token code operation process according to an embodiment of the present invention.

14 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

15 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

16 is a diagram illustrating a token code operation process according to an embodiment of the present invention.

17 illustrates an implementation process of applying a token code based financial transaction to Internet banking according to an embodiment of the present invention.

18 illustrates an example of performing internet banking on a token code-based financial transaction according to an embodiment of the present invention.

19 illustrates an implementation process of applying a token code-based financial transaction to wireless banking according to an embodiment of the present invention.

20 illustrates wireless banking of a token code based financial transaction according to an embodiment of the present invention.

<Description of main parts of drawing>

100: token agent providing means 105: information storage means

110: storage medium 115: server

125: information transmission means 130: information storage means

135: storage medium 140: network means

145: customer terminal

The present invention utilizes at least one financial transaction means information, the financial means owned customer-owned wireless terminal information (and / or customer information) and the token generation program provided in the customer-owned terminal, the server on the communication network in the customer terminal; In connection with a predetermined financial transaction, the server, in connection with the storage medium (or storage medium operating means), the financial transaction means information corresponding to the financial transaction and / or the customer information owned by the financial transaction means (and / or Or confirming the token generation program information associated with the customer-owned wireless terminal information) and authenticating the token code using the token generation program information, thereby processing the financial transaction. will be.

As the Internet infrastructure and financial transaction infrastructure evolved, user authentication became very important for financial transactions and website access.

In particular, phishing is used to extract information about a person's financial transactions (e.g., authentication number, credit card number, account information, etc.) by eliciting or linking to an e-mail sent from a website such as a financial institution. To steal your domain or trick your domain name system (DNS) name to mislead users into real sites, pharming to steal personal information such as personal IDs, passwords, and account information, or from your keyboard As keyboard hacking to hack input key input information (eg, personal ID, password, account information, etc.) becomes a problem, a safer and more efficient method for financial transactions is being sought.

In addition, in general, since a plurality of authentication information (for example, ID and password) required for financial transaction login or financial transaction does not exist, the user had to bear the damage completely when leaked to others through hacking or the like. .

The present invention has been derived to solve the above problems, the client terminal for providing a predetermined token code generated by a predetermined token generation program to the server when performing a predetermined financial transaction by connecting to the server on the communication network and A predetermined storage medium (or storage medium) that stores and manages at least one financial transaction information and / or customer information owned by the financial transaction means and predetermined token generation program information for a token generation program provided in the client terminal. Operation means), the financial transaction means information corresponding to the financial transaction and / or the token generation program information associated with the financial transaction means owned customer information (and / or customer-owned wireless terminal information), and the token A server for authenticating the validity of the token code by using the generated program information. Its purpose is to provide a financial transaction processing system.

In addition, the present invention, if a customer terminal connected through a communication network for a predetermined financial transaction provides a predetermined token code generated by a predetermined token generation program, receiving unit for receiving it, at least one or more financial transaction means information and / Or in connection with a predetermined storage medium (or storage medium operating means) that stores and manages the financial transaction means owned customer information and predetermined token generation program information for the token generation program provided in the customer terminal. A verification unit for confirming financial transaction means information corresponding to the transaction and / or token generating program information associated with the financial transaction means owning customer information (and / or customer-owned wireless terminal information), and using the token generating program information. According to the authentication unit for authenticating the validity of the received token code and the validity authentication result, the An object of the present invention is to provide a financial transaction processing apparatus having a financial transaction processing unit that processes financial transactions.

In addition, the present invention uses a token generation program, a communication unit for accessing a server on a communication network to process data transmission and reception of a predetermined financial transaction and a predetermined code (or pin number or password) input through a predetermined input means. An object of the present invention is to provide a terminal device having a control unit for driving the token generation program and providing a predetermined token code generated by the token generation program to the server through the communication unit.

In addition, the present invention provides a financial transaction means information data file for storing at least one financial transaction means information, a financial transaction means owned customer information data file for storing the financial transaction means customer information and the financial transaction means owned customer terminal Or it provides an information storage medium having a token generating program information data file for storing predetermined token generating program information for a predetermined token generating program provided in the financial transaction means owned customer terminal.

Financial transaction processing method according to the present invention for achieving the above object, at least one or more financial transaction means information and / or the financial transaction means owned customer information in a predetermined information storage means for the token generation program provided in the customer terminal The information storage step of storing the predetermined token generating program information in a predetermined storage medium in association with the predetermined token generating program information, and when the client terminal is connected to the server on the communication network to perform a predetermined financial transaction, the token generating program provided in the customer terminal A token code providing step of providing a predetermined token code to the server, and the financial transaction means information corresponding to the financial transaction and / or the financial transaction in association with the storage medium (or storage medium operating means) at the server; Token generator information associated with Sudan-owned customer information (and / or customer-owned wireless terminal information). And a verification step of authenticating the validity of the token code using the token generation program information and a financial transaction processing step of processing the financial transaction according to the validity authentication result at the server. do.

According to an embodiment of the present invention, the financial transaction preferably includes a financial transaction using a wired terminal and / or a financial transaction using a wireless terminal.

According to the implementation method of the present invention, the financial transaction preferably comprises an account-related financial transaction such as payment processing financial transaction and / or account transfer.

According to an embodiment of the present invention, the financial transaction means may include a financial account, a credit card, a debit card, a cash card, a check card, a prepaid card, and at least one electronic money.

According to the embodiment of the present invention, the customer terminal is characterized in that it comprises a wireless terminal or a wired terminal.

According to an embodiment of the present invention, the client terminal is connected to the server through internet banking or mobile banking.

Preferably, accessing the server through the mobile banking may include connecting in a swap method or in an IC chip method.

According to the method of the present invention, the token code providing step, using a predetermined code (or pin number or password) input through a predetermined input means in the customer terminal, a token generation program provided in the customer terminal The method may further include driving a token generation program.

According to an embodiment of the present invention, the token code providing step may further provide predetermined financial transaction information from the customer terminal to the server.

According to the present invention, the financial transaction processing method may be configured to further include a token generation program providing step of providing a predetermined token generation program from the predetermined token generation program providing means to the customer terminal.

According to the present invention, the financial transaction processing method further includes an information transmission step of transmitting, by the predetermined information transmission means, predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing to the customer terminal. It can be configured to include.

According to the present invention, the financial transaction processing method, the predetermined financial information processing means (or payment approval full text) data corresponding to the financial transaction processing in the predetermined information storage means the financial transaction means information (and / or customer information) ) May further include a financial transaction processing history storage step of storing the transaction in a predetermined storage medium.

According to an embodiment of the present invention, the token code providing step may further provide at least one piece of authentication information (or secret code) associated with the financial transaction means to the server at the customer terminal. The step is characterized by further authenticating the validity of the authentication information (or secret code).

According to an embodiment of the present invention, the authentication step may be performed by referring to the token generation program information associated with the financial transaction means information and / or the financial transaction means owned customer information (and / or customer-owned wireless terminal information). A predetermined token authentication code corresponding to the received token code may be generated and the validity of the token code may be authenticated by comparing the token code with the token authentication code.

The present invention is characterized by comprising a recording medium on which a computer readable program is recorded for executing at least one method of processing a financial transaction described above.

On the other hand, a financial transaction processing system for realizing the financial transaction processing method, the customer provides a predetermined token code generated by a predetermined token generation program to the server when performing a predetermined financial transaction by connecting to a server on a communication network A predetermined storage medium (or storing and managing the terminal and the at least one financial transaction means information and / or the customer information of the financial transaction means and the predetermined token generation program information for the token generation program provided in the customer terminal). In connection with the storage medium operating means), the financial transaction means information corresponding to the financial transaction and / or the token generating program information associated with the financial transaction means customer information (and / or customer-owned wireless terminal information), A server for authenticating the validity of the token code using the token generation program information. Characterized in that made.

According to the implementation method of the present invention, it is preferable that the server processes the financial transaction according to the validity authentication result.

According to an embodiment of the present invention, the customer terminal may drive a token generation program provided in the customer terminal by using a predetermined code (or pin number or password) input through a predetermined input means. do.

The client terminal may further provide predetermined financial transaction information to the server.

According to the present invention, the financial transaction processing system may be configured to further include token generation program providing means for providing a predetermined token generation program to the customer terminal.

According to the present invention, the financial transaction processing system may be configured to further include information transmitting means for transmitting predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing to the customer terminal. .

According to the present invention, the financial transaction processing system, predetermined financial transaction processing history (or payment approval professional) data corresponding to the financial transaction processing in conjunction with the financial transaction means information (and / or customer information) predetermined It may be configured to further include information storage means for storing in the storage medium.

According to an embodiment of the present invention, the server further provides validity of the authentication information (or secret code) when the customer terminal further provides at least one or more authentication information (or secret code) associated with the financial transaction means. You can authenticate.

According to an embodiment of the present invention, the server receives the token with reference to the token generation program information associated with the financial transaction means information and / or the financial transaction means customer information (and / or customer-owned wireless terminal information). Generate a predetermined token authentication code corresponding to the token code, and compare the token code and the token authentication code to authenticate the validity of the token code.

On the other hand, the financial transaction processing apparatus for realizing the present invention, a receiving unit for receiving a predetermined token code generated by a predetermined token generation program when a client terminal connected through a communication network for a predetermined financial transaction, and receiving it; A predetermined storage medium (or storage medium) that stores and manages at least one financial transaction information and / or customer information owned by the financial transaction means and predetermined token generation program information for a token generation program provided in the client terminal. An operation unit for confirming the financial transaction information corresponding to the financial transaction and / or the token generation program information associated with the financial transaction means-owned customer information (and / or the customer-owned wireless terminal information) in association with the financial transaction; An authentication unit for authenticating the validity of the received token code by using the token generation program information; According to the validity authentication result, characterized in that it comprises a financial transaction processing unit for processing the financial transaction.

According to the embodiment of the present invention, the receiving unit may further receive predetermined financial transaction information from the customer terminal.

According to the present invention, the financial transaction processing apparatus may be configured to further include a token generation program providing unit for providing a predetermined token generation program to the customer terminal.

According to the present invention, the financial transaction processing apparatus may be configured to further include an information transmission unit for transmitting predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing to the customer terminal.

According to the present invention, the financial transaction processing apparatus is configured to link predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing with the financial transaction means information (and / or customer information). It may be configured to further include an information storage unit for storing in the storage medium.

According to an embodiment of the present invention, the receiving unit, when the customer terminal further provides at least one or more authentication information (or secret code) associated with the financial transaction means, characterized in that for receiving further, the authentication unit And further authenticating the validity of the received authentication information (or secret code).

According to the embodiment of the present invention, the authentication unit generates a predetermined token authentication code corresponding to the received token code with reference to the token generation program information, and compares the token code and the token authentication code to the token. Validate your code.

According to the present invention, the financial transaction processing device is made of a single device (or server) or a plurality of devices (or servers).

According to the present invention, the financial transaction processing apparatus is characterized in that it comprises a recording medium on which a program for executing the functions of at least one or more device components described above is recorded.

On the other hand, a terminal device for realizing the present invention is a predetermined code (or pin number) input through a token generating program, a communication unit for connecting to a server on a communication network and processing a predetermined financial transaction related data transmission and reception, and a predetermined input means. Or a password) to drive the token generation program, and to provide a predetermined token code generated by the token generation program to the server through the communication unit.

According to an embodiment of the present invention, the terminal apparatus may include a wireless terminal or a wired terminal.

According to an embodiment of the present invention, the terminal apparatus may be connected to the server through internet banking or mobile banking.

According to an embodiment of the present invention, the control unit may further provide predetermined financial transaction information and / or predetermined authentication information (or password) to the server through the communication unit.

According to the invention, the terminal device is characterized in that it comprises a recording medium on which a program for executing the functions of at least one or more device components described above is recorded.

Meanwhile, the information storage medium required for realizing the present invention includes a financial transaction means information data file for storing at least one financial transaction means information, and a financial transaction means customer information data file for storing the financial transaction means customer information. And a token generation program information data file provided to the financial transaction means owning customer terminal or storing predetermined token generation program information for a predetermined token generation program provided in the financial transaction means owning customer terminal. It is characterized by.

According to the present invention, the information storage medium, the financial transaction means information data file, the financial transaction means owned customer information data file, and the token generation program information data file at least one of the mutually interworking process for storing. It is done.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be based on the contents throughout the present title.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In the present invention, each means constituting the financial transaction processing system using the wireless terminal number is a program (e.g., each recorded on a recording medium provided in a predetermined server according to unique characteristics (or roles) defined in the means). A program comprising at least one function unit (Function) for performing the unique function (or role) of the means, and / or configured as an independent server performing the unique function defined in the means ( For example, a plurality of server systems interoperating with each other through a predetermined server-to-server interface) can be configured. The preferred embodiment of the present invention, which is implemented below, can be used to efficiently describe the technical components of the present invention. Are stored on a recording medium provided in a predetermined server and / or through a plurality of interoperable servers. Would be described as the display, but are not limited to the exemplary method of the device, if more than the embodiment in no way. In addition, in the following embodiment, a predetermined token generation program may be mounted on both a customer wireless terminal and / or a wired terminal. For convenience, the token generation program may be referred to as a token agent and / or a token agent program. In addition, the terms used in the following embodiments will be used appropriately modified according to the field to which the token code-based financial transactions according to the present invention is applied, whereby the present invention is not limited.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It's just

1 is a diagram illustrating a financial transaction processing system according to the present invention.

In more detail, FIG. 1 shows a customer terminal which provides a predetermined token code generated by a predetermined token agent program to the server 115 when a predetermined financial transaction is performed by connecting to a server 115 on a communication network 140. 145 and at least one financial transaction means information and / or predetermined financial agent ownership information associated with the predetermined token agent program information for the token agent program provided in the client terminal 145 is stored and managed In connection with the storage medium 110 (or storage medium operating means) of the financial transaction means corresponding to the financial transaction and / or the financial transaction means owned customer information (and / or customer-owned wireless terminal information) The server 115 confirms token agent program information and authenticates the validity of the token code using the token agent program information. It relates to a financial transaction processing system which comprises the box.

Referring to FIG. 1, the financial transaction processing system may further include a token agent providing means 100 for providing a predetermined token agent program to the client terminal 145, and the client terminal 145. After providing a predetermined token program to the client, at least one or more financial means information and / or the financial transaction means customer information and the predetermined token agent information for the token agent program provided in the customer terminal 145 by linking It is preferable to further comprise a token agent providing means for storing in a predetermined storage medium (110).

In addition, the financial transaction processing system further comprises information transmission means 125 for transmitting predetermined financial transaction processing history (or payment approval specialized text) data corresponding to the financial transaction processing to the customer terminal 145. desirable.

In addition, the financial transaction processing system connects predetermined financial transaction processing history (or payment authorization) data corresponding to the financial transaction processing with the financial transaction means information (and / or customer information), and stores a predetermined storage medium 135. It is preferable that the information storage means 130 to be stored further).

According to an embodiment of the present invention, the server 115 preferably processes the financial transaction according to the validity authentication result. In addition, the financial transaction preferably includes a financial transaction using a wired terminal, and / or a financial transaction using a wireless terminal, and / or includes an account-related financial transaction such as a payment processing financial transaction and / or an account transfer. It is preferable to make it.

According to an embodiment of the present invention, the financial transaction means preferably comprises a financial account, a credit card, a debit card, a cash card, a check card, a prepaid card, and at least one electronic money.

According to an embodiment of the present invention, the client terminal 145 may be equipped with a predetermined token agent program, and the client terminal 145 may be a personal communication system (PCS) and / or GSM (Global). System for Mobile communications terminals and / or Personal Digital Cellular (PDC) and / or Personal Handyphone System (PHS) terminals and / or Personal Digital Assistants (PDAs) and / or Smart Phones Preferably comprises a wireless terminal comprising at least one phone and / or telematics and / or wireless data communication terminal and / or a portable internet terminal, and / or a personal computer (PC) and / or notebook It is preferable to include a wired terminal including at least one or more, and the customer terminal 145 is Internet banking or ma Through one banking it is desirable to connect to the server 115. In particular, the connection of the client terminal 145 to the server 115 through the mobile banking is preferably made by connecting in a WAP (Wireless Application Protocol (WAP) method, or IC chip method.

In addition, the client terminal 145 is a token agent program provided in the client terminal 145 by using a predetermined code (or PIN (Personal Identification Number; PIN) number or password) input through a predetermined input means. It is preferable to drive the customer terminal 145 is also preferably to provide a predetermined financial transaction information to the server 115.

According to an embodiment of the present invention, the server 115 refers to the token agent information associated with the financial transaction means information and / or the financial transaction means customer information (and / or customer-owned wireless terminal information). Generating a predetermined token authentication code corresponding to the received token code, and comparing the token code and the token authentication code to authenticate the validity of the token code, the financial transaction in the customer terminal 145 When further providing at least one authentication information (or secret code) associated with the means, it is preferable to further authenticate the validity of the authentication information (or secret code).

2 illustrates a configuration of a system for providing a predetermined token agent to a customer terminal 145 according to an embodiment of the present invention.

In more detail, FIG. 2 provides a predetermined token agent program and is mounted on a client terminal 145 having at least one financial transaction means, and the at least one financial transaction means information and financial transaction means customer information (and / Or customer wireless terminal information) and a token agent providing system for storing the token agent information in a predetermined storage medium 110, showing a preferred embodiment of the present invention to those skilled in the art In order to easily describe the technical features of the present invention, Figure 1 is a financial transaction means issuing server 200 and the customer terminal 145, the token agent providing system issuing a predetermined financial transaction means to a predetermined customer A token agent providing server 215 for providing and mounting a predetermined token agent program, and the customer terminal 145; Store information stored in a predetermined storage medium 110 in association with the loaded token agent information, the financial transaction means owned customer information (and / or customer wireless terminal information) and at least one financial transaction information issued to the customer It is illustrated and illustrated as including a server 235. However, technical features of the token agent providing system are not limited to those illustrated in FIG. 2, and a person having ordinary knowledge in the technical field to which the present invention pertains may refer to the financial transaction means issuing server with reference to FIG. 2. It is easy to infer a method of implementing various token agent providing systems in which the 200 and the token agent providing server 215 and the information storage server 235 are constituted by one server and / or are composed of at least two or more servers. You can do it.

The financial transaction means issuing server 200 is a financial account financial transaction means, credit card financial transaction means, debit card financial transaction means, cash card financial transaction means, check card financial transaction means, prepaid card financial transaction means And a server provided in a bank and / or a financial company for issuing a financial transaction means including at least one electronic money financial transaction means to the customer. Referring to FIG. 2, at least one financial transaction means is provided to the customer. Issuing financial transaction means issuing unit 205, and financial transaction means information D / B (210) for storing in association with the at least one financial transaction means information and the customer information issued to the customer.

The financial transaction means issuing unit 205 obtains predetermined customer information about the customer through a predetermined financial transaction means issuing interface 250 and / or issues the customer to the customer based on the obtained customer information. Generate at least one financial transaction instrument information, store the financial transaction instrument information in a DBMS provided in a predetermined financial system, and / or print the financial transaction instrument information in a predetermined account book and / or a predetermined card Characterized in that it is stored in a medium (for example MS card and / or IC card) and / or a wireless chip medium (for example, IC chip mounted or detached in a wireless terminal).

According to the exemplary embodiment of the present invention, the method for acquiring the customer information about the customer by the financial transaction means issuing unit 205 may be provided with the customer information through a document including a predetermined customer information entry form. It is preferable to include a method of using the financial transaction means issuing interface 250 obtained in an offline manner through a predetermined information input means (for example, an information input terminal), and / or a predetermined customer terminal used by the customer ( For example, a financial transaction means issuing interface 250 for providing a predetermined customer information input interface to a customer-owned wired terminal and / or a customer-owned wireless terminal) and acquiring the customer information online through the customer information input interface. It is preferable to include the method of using.

In addition, the financial transaction means issuing unit 205 reads the obtained customer information (for example, credit rating of the customer) to generate at least one financial transaction means information to be issued to the customer, and the generated financial transaction means The information may be stored in a DBMS provided in a predetermined financial system, and / or the financial transaction information may be printed on a predetermined account book or stored on a predetermined card medium and / or wireless chip medium and issued to the customer. .

When at least one financial transaction means is issued to the customer as described above, the financial transaction means issuing unit 205 associates the customer information with at least one financial transaction means information issued to the customer to the financial transaction means information D. / B 210 to store.

Referring to FIG. 2, the token agent providing server 215 may include a token agent D / B 225 for storing at least one token agent corresponding to at least one customer wireless terminal platform, and the token agent D / B ( And an agent providing unit 220 for providing and mounting a predetermined token agent stored in the customer wireless terminal 225, and the token provided in the customer wireless terminal by the agent providing unit 220. It is preferable that the token agent further comprises a diagnostic unit 230 for diagnosing the validity of the agent.

The token agent D / B 225 stores at least one token agent program capable of operating in correspondence with a predetermined customer wireless terminal platform, and token agent related information corresponding to the token agent program. Detailed description of the token agent D / B 225 will be described with reference to FIGS. 3 and / or 4.

The agent providing unit 220 extracts a predetermined token agent program corresponding to a platform provided in the client terminal 145 from the token agent D / B 225, and / or at least one token generating information. And dynamically generate a predetermined token agent program executable on a platform included in the client terminal 145 and link the token agent program and / or the token agent program through a predetermined token agent providing interface 255. At least one token generated information is provided to the customer terminal 145 and mounted.

In order for the agent provider 220 to provide a predetermined token agent program to the client terminal 145, the wireless terminal information is required, and the wireless terminal information is provided by providing the token agent to the client terminal 145. Provided by the requesting subject.

According to one embodiment of the invention, the financial transaction means issuing server 200 issuing at least one financial transaction means to the customer, and / or after issuing at least one financial transaction means to the customer, To provide the token agent program to the token agent providing server 215 to the customer terminal 145 issuing the financial transaction means to the token agent providing server 215 for processing the financial transaction using the wireless terminal number based on the token code, The financial transaction means issuing server 200 provides the wireless terminal information included in the customer information to the agent providing unit 220 of the token agent providing server 215.

According to another exemplary embodiment of the present invention, the customer accesses the token agent providing server 215 through a predetermined customer terminal (eg, a customer-owned wired terminal and / or a wireless terminal), and wirelessly based on a token code. Preferably, the wireless terminal information is provided to the token agent providing server 215 for financial transaction processing using the terminal number.

When the token agent program is provided and loaded with the wireless terminal information as described above, the agent provider 220 checks the platform of the customer terminal 145 based on the wireless terminal information. For example, when the client terminal 145 is a mobile communication terminal connected to a predetermined mobile communication network, the agent provider 220 may use a subscriber D / B (eg, a mobile communication terminal) provided on the mobile communication network using the wireless terminal information. , The Home Location Register (HLR) or the Visitor Location Register (VLR)) (not shown) may identify the wireless terminal platform.

When the customer terminal 145 platform is identified as described above, the agent provider 220 extracts a predetermined token agent program corresponding to the wireless terminal platform from the token agent D / B 225, and / or at least Dynamically generate one or more token generation information.

In addition, the agent providing unit 220 extracts at least one token generation information corresponding to the token agent program from the token agent D / B 225, and the extraction (and / or dynamically generated) token agent A program and / or the at least one extracted token generation information in association with the token terminal providing interface 255 (eg, the wired / wireless network 140 to which the client terminal 145 is connected) to the client terminal 145. By transmitting, the token agent program is mounted on the customer terminal 145.

According to an exemplary embodiment of the present invention, the token agent program may be both mounted on the customer terminal 145 platform and / or mounted on an IC chip mounted or detached from the wireless terminal. It is not limited to this invention.

According to the present invention, the token agent program provided to and mounted on the client terminal 145 may include at least one token code generation method including a time-synchro and a challenge-response method. The present invention is not limited by the token code generation method.

When the token agent program is mounted on the customer terminal 145 as described above, the token agent diagnosis unit 230 diagnoses whether the token agent program mounted on the wireless terminal device operates normally in cooperation with the customer terminal 145. It is characterized by.

According to an embodiment of the present invention, the method for diagnosing the token agent program mounted on the client terminal 145 may include generating a predetermined diagnostic token code by the token agent program mounted on the client terminal 145. When provided to the token agent diagnosis unit 230, the token agent diagnosis unit 230 generates a predetermined diagnostic token authentication code corresponding to the received token code, and the received token code and the generated token authentication By comparing the codes, it is desirable to diagnose the validity of the token agent program mounted on the customer terminal 145.

According to the present invention, the token agent providing server 215 performs a function of a token agent program providing means for providing and mounting a predetermined token agent program to the customer terminal 145.

As described above, when a predetermined token agent program is normally provided and mounted to the client terminal 145, the information storage server 235 may be provided with at least one financial transaction means issued by the financial transaction means issuing server 200 to the customer. Information, predetermined wireless terminal information on the client terminal 145, and token agent information loaded on the client terminal 145 are stored in a predetermined storage medium 110 in association with each other.

Referring to FIG. 2, the information storage server 235 stores at least one financial transaction information and / or customer information (eg, wireless terminal information) issued to the customer from the financial transaction information D / B 210. And an information extraction unit 240 for extracting the token agent information provided and loaded from the token agent D / B 225 to the customer terminal 145, and the extracted at least one financial transaction. Information storage unit for storing the means information, the customer information (and / or customer wireless terminal information) owned by the financial transaction means and the token agent information provided to the customer terminal 145 stored in a predetermined storage medium 110 by interworking It characterized by including (245).

According to the present invention, the information storage server 235 includes at least one financial transaction means information, the financial transaction means customer information (and / or customer wireless terminal information) and a predetermined token agent program provided in the wireless terminal. It performs the function of the information storage means 105 for storing in the predetermined storage medium 110 in association with the token agent information of the.

3 is a diagram illustrating token agent information to be provided to the customer terminal 145 according to an embodiment of the present invention.

In more detail, Figure 3 is a predetermined token agent for generating a time-synchoken token code, the predetermined token for each platform corresponding to the platform of the customer terminal 145 on which the token agent is to be mounted As an example of attribute information for an agent, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, and a token generation. And an algorithm, at least one token generation information, and / or a token renewal cycle, at least one or more information items may be further included according to the intention of the person skilled in the art, and the present invention is not limited by the information items. no.

According to the present invention, the token agent program is mounted on the customer terminal 145 owned by the customer, and generates a predetermined token code, whereby the token agent program is generated in the customer terminal 145 platform. And program code that can be driven and / or operated. For example, if the client terminal 145 is a wireless terminal equipped with a wireless internet platform for interoperability (WIPI) platform, the token agent includes a program code that operates on the WIPI basis, and the mobile terminal has a different platform ( For example, if GVM / SK-VM / BREW, etc.) is installed, the program code includes the program code that runs on the platform. Or, if the customer terminal 145 is a wired terminal equipped with a Microsoft Windows operating system, the token agent includes a program code that operates in the Windows operating system.

In FIG. 3, the token agent program is provided in the token agent D / B 225 in the form of a precompiled program, and / or the token agent D / B 225 in the form of source code to be compiled. It is characterized in that stored in.

When the token agent program is provided in the token agent D / B 225 in the form of a pre-compiled program in accordance with an embodiment of the present invention, the token agent providing server 215 via the predetermined network 140 At the time of providing and mounting the token agent program to the client terminal 145, at least one token generation information corresponding to the token agent program (for example, a randomly generated number in the token agent providing server 215). It is preferable that the corresponding secret key value) is provided together with the customer terminal 145 and stored in a predetermined storage device, and a point in time when the token agent program mounted on the customer terminal 145 generates a predetermined token code. In the token agent program, the token agent external storage device (eg, the memory unit of the customer terminal 145, And / or if the customer terminal 145 is a wireless terminal, extracting at least one token generation information from a memory provided in an IC chip mounted or detached from the wireless terminal, and based on the token generation information. It is desirable to generate a token code.

According to another exemplary embodiment of the present invention, when the token agent program is stored in the token agent D / B 225 in the form of source code to be compiled, the client terminal 145 in the token agent providing server 215. At the time of providing the token agent program, at least one token generation information corresponding to the token agent program (eg, a secret key value corresponding to a randomly generated number by the token agent providing server 215) may be stored. Assign the token generation information variable included in the token agent source code, and generate the predetermined token agent program by compiling the token agent source code in which at least one token generation information is assigned to the predetermined token generation information variable as described above. To specify a dynamically generated token agent program as described above Preferably, the token agent program is provided to the customer terminal 145 through the network 140 and mounted on the client terminal 145. At the time when the token agent program mounted on the customer terminal 145 generates a predetermined token code, the token agent program is It is preferable to generate a predetermined token code based on the token generation information inserted into the token agent program internal variable.

According to another exemplary embodiment of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the customer terminal 145 according to the intention of a person skilled in the art. At the time of mounting, at least one other token generation information is provided to the customer terminal 145 together and stored in a predetermined storage device, and the token agent program mounted on the customer terminal 145 has a predetermined token code. At the time of generating the token, it is possible to generate a predetermined token code using both the token generation information provided in the token agent program and the token generation information provided in the external storage device, thereby limiting the present invention. It doesn't work.

The version of the token agent information includes version information of the token agent program for each platform to be provided to the client terminal 145.

According to the embodiment of the present invention, even if the same kind of token agent program (for example, a token agent program operating on the same platform), the type and / or version of the token generation algorithm applied according to the version of the token agent program may be different. And, as a result, the token code generated by the token agent program will also vary, so that the version information provides information for accurately determining the token agent mounted on the customer terminal 145. It is possible to minimize the token code authentication error that may occur in the process of authenticating the predetermined token code generated in the client terminal 145 by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and hashing algorithms (eg, SHA1 hashing algorithms modified from SHAs), which are modified from the hashing algorithm, are used according to application fields. .

The token generation information of the token agent information is information for generating a token code of a time synchronous method. Referring to FIG. 3, the token code generation information may first generate a time (or time) at which the token code is generated. Information, and a secret key value corresponding to a value randomly generated by the token agent providing server 215 and / or the client terminal 145 is a wireless terminal according to the method. It is preferable to use uniquely assigned MIN / ESN as the second generation information and / or the third generation information.

Referring to an embodiment of the present invention, when the customer terminal 9145 is a wireless terminal and the token agent uses MIN / ESN of the wireless terminal as token generation information for generating a predetermined token code, the MIN / It is possible to use ESN as token generation information as it is, and the MIN / ESN has an excessively large value to prevent the token agent from overflowing in the process of generating the token code. It is possible to apply a predetermined hash function to the ESN and convert it to a value within a certain size, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

The token update period of the token agent information is a time interval in which a predetermined token code generated by the token agent is volatilized and invalidated in time when the token generation algorithm follows a time synchronization scheme. If it is difficult to transmit the time (or time) information of the token code generated with the token code in the process of transmitting to the financial transaction server 1000, the customer terminal 145 and the financial transaction server 1000 It is used to synchronize the token generation time (or time) information for a period of time. That is, the token code generated by the token agent is transmitted to the predetermined financial transaction server 1000 within the token update period, and the predetermined token authentication code corresponding to the token code is generated by the financial transaction server 1000. Should be. That is, after a predetermined token code is generated in the token agent provided in the client terminal 145, and if a predetermined token authentication code is generated within the talk update period in the financial transaction server 1000, the token code is assigned to the token code. Is validated. Therefore, the token update period is a time required to provide the token code generated in the customer terminal 145 to a predetermined payment terminal, a time required to transmit the token code to the financial transaction server 1000 and The financial transaction server 1000 may determine the time taken to generate a predetermined token authentication code.

According to another exemplary embodiment of the present invention, the token generation algorithm follows a time synchronization scheme and it is easy to transmit the time (or time) information at which the token code is generated in the token agent to the financial transaction server 1000. In this case, the token update period may be omitted, or may be set at very short time intervals.

4 is a diagram illustrating token agent information to be provided to the customer terminal 145 according to an embodiment of the present invention.

In more detail, Figure 4 is a predetermined token agent for generating a challenge-response token code, the platform-specific predetermined platform for each platform corresponding to the customer terminal 145 platform on which the token agent is to be mounted As an example of attribute information on a token agent, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, and a token generation. It comprises an algorithm and at least one token generation information, at least one or more information items may be further included according to the intention of those skilled in the art, the invention is not limited by the information items.

According to the present invention, the token agent program is mounted on the customer terminal 145 owned by the customer, and generates a predetermined token code, whereby the token agent program is generated in the customer terminal 145 platform. And program code that can be driven and / or operated. For example, if the client terminal 145 is a wireless terminal equipped with a wireless internet platform for interoperability (WIPI) platform, the token agent includes a program code that operates on the WIPI basis, and the mobile terminal has a different platform ( For example, if GVM / SK-VM / BREW, etc.) is installed, the program code includes the program code that runs on the platform. Or, if the customer terminal 145 is a wired terminal equipped with a Microsoft Windows operating system, the token agent includes a program code that operates in the Windows operating system.

4, the token agent program D / B 225 is provided in the token agent D / B 225 in the form of a precompiled program, and / or in the form of source code to be compiled. It is characterized in that stored in.

According to an embodiment of the present invention, the token agent program is provided in the token agent D / B 225 in the form of a precompiled program, and the token agent program generates the token code from a predetermined server 115. Receive a predetermined challenge value as token generation information for the token agent providing server 215 is to provide the token agent program to the customer terminal 145 via a predetermined network 140 to mount Preferably, when the token agent program mounted on the client terminal 145 generates a predetermined token code, the token agent program is based on a predetermined challenge value received from the server 115. It is desirable to generate a token code.

According to another exemplary embodiment of the present invention, when the token agent program is provided in the token agent D / B 225 in the form of a precompiled program, the token agent providing server 215 establishes a predetermined network 140. At the time of providing and mounting the token agent program to the client terminal 145, at least one or more token generation information corresponding to the token agent program (for example, a number randomly generated by the token agent providing server 215) It is preferable to provide a secret key value corresponding to the same to the customer terminal 145 and store it in a predetermined storage device, wherein the token agent program mounted on the customer terminal 145 generates a predetermined token code. At the point of time, the token agent program is assigned to the token and a predetermined challenge value received from the server (115). At least one token from an external storage device (e.g., a memory unit of the customer terminal 145, and / or a memory provided in an IC chip mounted or detached from the wireless terminal if the customer terminal 145 is a wireless terminal) It is preferable to extract the generation information and generate a predetermined token code based on the token generation information.

According to another exemplary embodiment of the present invention, when the token agent program is stored in the token agent D / B 225 in the form of source code to be compiled, the client terminal 145 at the token agent providing server 215. At the time of providing the token agent program, at least one token generation information corresponding to the token agent program (for example, a secret key value corresponding to a randomly generated number by the token agent providing server 215) is obtained. Substituting the token generation information variable included in the token agent source code, and generates a predetermined token agent program by compiling the token agent source code of at least one token generation information is substituted into a predetermined token generation information variable as described above The token agent program generated dynamically as described above. Preferably, the token agent program is provided to the customer terminal 145 through the network 140, and the token agent program mounted on the customer terminal 145 generates a predetermined token code. The RAM may generate a predetermined token code based on a predetermined challenge value received from the server 115 and token generation information substituted into the token agent program internal variable.

According to another exemplary embodiment of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the customer terminal 145 according to the intention of a person skilled in the art. At the time of mounting, at least one other token generation information is provided to the customer terminal 145 together and stored in a predetermined storage device, and the token agent program mounted on the customer terminal 145 has a predetermined token code. At the time of generating the token agent, the token agent program uses a predetermined challenge value received from the server 115, the token generation information provided in the corresponding token agent program, the token generation information provided in the external storage device, and the like. It is possible to generate a predetermined token code, thereby limiting the present invention It doesn't work.

The version of the token agent information includes version information of the token agent program for each platform to be provided to the client terminal 145.

According to the embodiment of the present invention, even if the same kind of token agent program (for example, a token agent program running on the same platform), the type and / or version of the token generation algorithm applied according to the version of the token agent program may be different. And, as a result, the token code generated by the token agent program will also vary, so that the version information provides information for accurately determining the token agent mounted on the customer terminal 145. It is possible to minimize the token code authentication error that may occur in the process of authenticating the predetermined token code generated in the client terminal 145 by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and a hashing algorithm (for example, SHA-1 hashing algorithm with SHA) is further modified according to an application. It is used.

The token generation information of the token agent information is information for generating a token code of a time synchronous method. Referring to FIG. 4, the token code generation information is determined by the token agent program provided in the customer terminal 145. At the time of generating the token code, a predetermined challenge value provided to the client terminal 145 through the server 115 is used as first generation information, and randomly provided by the token agent providing server 215 according to an implementation method. The second generation information and / or the third generation of the secret key value corresponding to the generated value and / or the MIN / ESN uniquely assigned to the wireless terminal on which the token agent is mounted if the customer terminal 145 is a wireless terminal. It is preferable to use it as information.

According to the method of the present invention, the challenge value is an arbitrary value randomly generated by the server 115 at the time when the token agent program included in the client terminal 145 generates a predetermined token code. The server 115 transmits the challenge value transmitted to the client terminal 145 until a token code (for example, a response corresponding to the challenge) generated based on the challenge value is received from the client terminal 145. It is preferable to maintain the token code, and when the token code is received, it is preferable to generate a predetermined token authentication code based on the challenge value to authenticate the received token code.

Referring to an embodiment of the present invention, when the customer terminal 145 is a wireless terminal and the token agent uses MIN / ESN of the wireless terminal as token generation information for generating a predetermined token code, the MIN / ESN can be used as token generation information as it is, and the MIN / ESN has an excessively large value to prevent the token agent from overflowing in the process of generating the token code. It is possible to apply a predetermined hash function to / ESN and convert it to a value within a certain size, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

5 is a diagram illustrating an embodiment of providing and mounting a token agent program to a customer terminal 145 according to one embodiment of the present invention.

In more detail, FIG. 5 illustrates a process of loading a token agent program for a token code-based financial transaction into the wireless terminal when the client terminal 145 on which the token agent program is mounted is the customer-owned wireless terminal. will be. Those skilled in the art to which the present invention pertains can easily infer various implementation methods for mounting a predetermined token agent to the wireless terminal in addition to the implementation method shown below with reference to FIG. 5. It is to be understood that the present invention is not limited by the present method.

Referring to FIG. 5, predetermined token information (and / or wireless terminal information) on which a token agent program for token code-based financial transactions is mounted is provided to the token agent providing server 215 (500).

According to an embodiment of the present invention, the process 500 may include predetermined customer information (and / or wireless) in which a predetermined token agent program will be loaded from a predetermined financial means issuing server 200 to the token agent providing server 215. Terminal information), and / or the client accesses the token agent providing server 215 to provide the customer information (and / or wireless terminal information). Do.

When the customer information (and / or wireless terminal information) is provided as described above, the token agent providing server 215 reads the customer information (and / or wireless terminal information) and transmits a predetermined token agent program to the wireless terminal. Check whether to provide by mounting (505).

According to an embodiment of the present invention, when a valid token agent program is preloaded in the wireless terminal, the token agent providing server 215 does not need to mount the token agent in the wireless terminal, and is effective in the wireless terminal. When the token agent program is not mounted, it is preferable to provide and mount the token agent.

If a token agent program is provided to the wireless terminal to be loaded (510), the token agent providing server 215 reads the customer information (and / or wireless terminal information) and provides the token to the wireless terminal. The agent program is checked (515).

According to an embodiment of the present invention, the token agent providing server 215 is a subscriber D / B (eg, home location register) provided in the mobile communication network when the wireless terminal on which the token agent is to be connected to the mobile communication network Or confirming the wireless terminal platform with reference to a visited location register), thereby identifying a token agent program to be provided to the wireless terminal. Alternatively, the platform information (or wireless terminal) of the wireless terminal in the process of receiving the customer information (and / or wireless terminal information) in order to process the token agent providing process irrespective of the mobile carrier according to the implementation method (500) It is also possible to receive the model information of the).

When the token agent to be provided to the wireless terminal is identified as described above, the token agent providing server 215 extracts or compiles the identified token agent program from the token agent D / B 225 and dynamically generates the token agent. And / or extract from the token agent D / B 225 the predetermined token generation information required for the token agent program to generate a predetermined token code, or dynamically generate (eg, generate a random value). (520).

When the predetermined token agent program to be provided and mounted to the wireless terminal and at least one token generation information corresponding to the token agent program are prepared as described above, the token agent providing server 215 sends the token agent to the wireless terminal. Provide and mount (525).

According to an embodiment of the present invention, the token agent providing server 215 may include a predetermined wireless message (eg, a Short Message) including a predetermined callback URL for providing the token agent to the wireless terminal. Service (EMS), Enhanced Message Service (EMS), Multimedia Messaging Service (MMS), etc.), and when the wireless terminal accesses the token agent providing server 215 through the callback UEL, the token is transmitted to the wireless terminal. It is desirable to provide and mount an agent.

According to another exemplary embodiment of the present invention, the token agent providing server 215 may perform the wireless communication through another kind of wireless software loading method that does not use the callback UE due to the intention of the person skilled in the art and / or the policy of the wireless network operator. It is possible to provide and mount the token agent to the terminal, whereby the present invention is not limited.

After the predetermined token agent program is loaded into the wireless terminal as described above, the wireless terminal determines to execute the diagnostic mode for the mounted token agent program, if the diagnostic mode for the token agent is executed (530). The wireless terminal executes the mounted token agent program to generate a predetermined diagnostic token code and transmits the diagnostic token code to the token agent providing server 215 (535). The token agent providing server 215 transmits the diagnostic token code to the diagnostic token code. A predetermined diagnostic token authentication code is generated (540), and the validity of the token agent program mounted on the wireless terminal is verified (545) by comparing the diagnostic token code with the diagnostic token authentication code.

According to an exemplary embodiment of the present invention, the token agent program mounted on the wireless terminal generates a predetermined token code in a time synchronous manner, and for this purpose, the token agent program is configured to generate a current time from an internal timer provided in the wireless terminal. Alternatively, it is preferable to generate the diagnostic token code by extracting time) information and using the extracted time (or time) information as predetermined token generation information for generating the diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program is in the process of providing the token agent program at least one or more token generation information (eg, token agent providing server 215 from the storage device provided in the wireless terminal). It is possible to generate the diagnostic token code further comprises a secret key including a random value transmitted together, and / or MIN / ESN information of the wireless terminal stored in the number assignment module (NAM) of the wireless terminal. .

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wired / wireless network, and the token agent providing server 215 generates the time of generating the diagnostic token code in the wireless terminal (or Time) to generate a predetermined diagnostic token authentication code, and compares the received diagnostic token code with the generated diagnostic token authentication code, thereby confirming the validity of the token agent program mounted on the wireless terminal.

According to another exemplary embodiment of the present invention, the token agent program installed in the wireless terminal generates a predetermined token code in a challenge-response manner, and the token agent providing server 215 generates a predetermined challenge value. The token agent program may generate a diagnostic token code by using the provided challenge value as predetermined token generation information for generating a diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program is in the process of providing the token agent program at least one or more token generation information (eg, token agent providing server 215 from the storage device provided in the wireless terminal). It is possible to generate the diagnostic token code further comprising a secret key including a random value transmitted together with, and / or MIN / ESN information of the wireless terminal stored in the NAM of the wireless terminal.

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wired / wireless network, and the token agent providing server 215 is used to generate the diagnostic token code in the wireless terminal. A predetermined diagnostic token authentication code is generated including a value, and the validity of the token agent program mounted in the wireless terminal is checked by comparing the received diagnostic token code with the generated diagnostic token authentication code.

If the token diagnostic token code and the diagnostic token authentication code do not match (550), the token agent providing server 215 requests retransmission of the token diagnostic token code to the wireless terminal (555), and the process (535 ~). Repeating 545 confirms the validity of the token agent.

On the other hand, if the token diagnostic token code and the diagnostic token authentication code match the validity of the token agent (550), the information storage server 235 and the financial transaction means information provided from the financial means issuing server 200 and The token agent information and the customer information (and / or wireless terminal information) are cooperatively stored and stored in a predetermined storage medium (560).

FIG. 6 is a diagram illustrating an embodiment of providing and mounting a token agent program to a customer terminal 145 according to one embodiment of the present invention.

In more detail, FIG. 6 illustrates a process of loading a token agent program for a token code-based financial transaction to the wired terminal when the customer terminal 145 on which the token agent program is mounted is the customer-owned wired terminal. will be. Those skilled in the art to which the present invention pertains can easily infer various implementation methods for mounting a predetermined token agent to the wired terminal in addition to the implementation method illustrated below with reference to FIG. 6. It is to be understood that the present invention is not limited by the present method.

Referring to FIG. 6, a customer accesses the token agent providing server through a predetermined wired terminal 600 and provides predetermined customer information (and / or wired terminal information) to the token agent providing server. The token agent is requested to be loaded (605).

According to another embodiment of the present invention, when the wired terminal requests to mount the token agent to the customer-owned wireless terminal, the wired terminal provides the customer-owned wireless terminal information in addition to the customer information, and the wireless The process of mounting the token agent on the customer-owned wireless terminal based on the terminal information is shown in FIG.

When the token agent is requested to be loaded as described above, the token agent providing server reads the customer information (and / or wired terminal information) and installs a predetermined token agent from the token agent D / B 225 to the wired terminal. Check (610).

According to an embodiment of the present invention, in the process of confirming the token agent, the token agent providing server accesses the financial means issuing server based on the customer information and checks whether a valid financial transaction means is provided to the customer. It is preferred to further comprise.

When the token agent to be provided to the wired terminal is identified as described above, the token agent providing server 215 extracts or compiles the identified token agent program from the token agent D / B 225 and dynamically generates the token agent. And / or extract from the token agent D / B 225 the predetermined token generation information required for the token agent program to generate a predetermined token code, or dynamically generate (eg, generate a random value). (615).

When the predetermined token agent program to be provided and mounted to the wired terminal and at least one token generation information corresponding to the token agent program are prepared as described above, the token agent providing server 215 sends the token agent to the wired terminal. Provide and mount (620).

After the predetermined token agent program is loaded into the wired terminal as described above, the wired terminal determines to execute the diagnostic mode for the mounted token agent program, if the diagnostic mode for the token agent is executed (625). The wired terminal executes the mounted token agent program, generates a predetermined diagnostic token code, and transmits the generated token code to the token agent providing server 215 (630). The token agent providing server 215 transmits the diagnostic token code. A predetermined diagnostic token authentication code is generated (635), and the validity of the token agent program mounted on the wired terminal is verified (640) by comparing the diagnostic token code with the diagnostic token authentication code.

According to an exemplary embodiment of the present invention, the token agent program mounted on the wired terminal generates a predetermined token code in a time synchronous manner, and for this purpose, the token agent program is configured to generate a current time from an internal timer provided in the wired terminal. Alternatively, it is preferable to generate the diagnostic token code by extracting time) information and using the extracted time (or time) information as predetermined token generation information for generating the diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program may further generate at least one token generation information from storage provided in the wired terminal to generate the diagnostic token code.

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wired / wireless network, and the token agent providing server 215 generates a time (or a time for generating the diagnostic token code in the wired terminal). Time) to generate a predetermined diagnostic token authentication code, and compares the received diagnostic token code with the generated diagnostic token authentication code, thereby confirming the validity of the token agent program mounted on the wired terminal.

According to another exemplary embodiment of the present invention, the token agent program mounted on the wired terminal generates a predetermined token code in a challenge-response manner, and the token agent providing server 215 generates a predetermined challenge value. The token agent program may be used to generate a diagnostic token code by using the provided challenge value as predetermined token generation information for generating a diagnostic token code. Of course, according to the intention and / or implementation method of those skilled in the art, the token agent program may further generate at least one token generation information from storage provided in the wired terminal to generate the diagnostic token code.

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wired or wireless network, and the token agent providing server 215 is used to generate the diagnostic token code in the wired terminal. A predetermined diagnostic token authentication code is generated including a challenge value, and the validity of the token agent program mounted on the wired terminal is checked by comparing the received diagnostic token code with the generated diagnostic token authentication code.

If the token diagnostic token code and the diagnostic token authentication code do not match (645), the token agent providing server 215 requests retransmission of the token diagnostic token code to the wired terminal (650), and the process (630 ~). Repeating 640 confirms the validity of the token agent.

On the other hand, if the token diagnostic token code and the diagnostic token authentication code are matched and the validity of the token agent is authenticated (650), the information storage server 235 is provided to the customer from the financial means issuing server based on the customer information. Extract the financial transaction means information of the customer (655), and associate and process the financial transaction information of the customer, the token agent information, and the customer information (and / or the customer-owned wireless terminal information) in a predetermined storage medium. (660).

7A and 7B illustrate an information configuration of token agent information stored in the storage medium 110 according to an embodiment of the present invention.

In more detail, FIGS. 7A and 7B illustrate token agent information corresponding to the token agent program mounted on the financial transaction customer wireless terminal for the token code based financial transaction when the token agent is mounted on the customer wireless terminal. As an example of a preferred configuration of information, FIG. 7A specifically illustrates a preferred configuration of information of token agents corresponding to a time-synchronized token agent program, and FIG. 7B corresponds to a token agent program of a challenge-response scheme. It illustrates an exemplary configuration of the token agent information.

According to the method of the present invention, the token agent information is preferably associated with the financial transaction wireless terminal information and / or the financial transaction means information on which the token agent program is mounted, each stored in the storage medium 110 The information may be added to at least one or more information items according to the intention of the person skilled in the art for carrying out the present invention, and the present invention is not limited thereto.

Referring to FIGS. 7A and 7B, the token agent information is information for identifying what kind of token agent is mounted in the customer wireless terminal and generating a token authentication code for authenticating the token code generated by the token agent. To this end, the token agent information includes the platform information of the wireless terminal equipped with the token agent program, the version of the token agent and the token generation algorithm and at least one token generation information mounted on the platform; Is done.

Referring to FIG. 7A according to an embodiment of the present invention, the token agent information of the time synchronization method may further include a predetermined token update period in which time synchronization is maintained.

Referring to FIG. 7B according to another exemplary embodiment of the present invention, the challenge value (eg, the first generation information of FIG. 7B) of the token generation information included in the token agent information of the challenge-response method is the financial transaction customer wireless terminal. Before the challenge value to be generated is generated, a null value is included. When the challenge value to be transmitted to the financial transaction customer wireless terminal is generated, the generated challenge value is substituted and the token agent mounted on the wireless terminal. It is preferable to maintain the substituted challenge value until a predetermined token code (response) corresponding to the challenge value is received from a program, and after an authentication procedure for the received token code is performed through the challenge value (E.g., a token authentication code corresponding to the received token code is generated through the maintained challenge value). ), The first generation information of the challenge value (e.g., a view 7b of the token generation information), it is preferable to again include a null value.

The wireless terminal information comprises at least one wireless terminal number information of the telephone number (MIN) and serial number (ESN) of the financial transaction customer owned wireless terminal equipped with the token agent, It may further include platform information, carrier information and terminal model information.

According to the exemplary embodiment of the present invention, the wireless terminal information may be further added with at least one information item according to the intention of the person skilled in the art. For example, the wireless terminal information may further include IC chip unique information (ICCHIP) (not shown) in an IC chip mounted or detached from the wireless terminal, and / or a subscriber identity module (SIM) in the wireless terminal. ) Or when a Universal Identification Module (UIM) or Universal Subscriber Identity Module (USIM) is provided, the SIM information, UIM information, or USIM information may be further included.

8 is a diagram illustrating an information configuration of customer information stored in the storage medium 110 according to an embodiment of the present invention.

In more detail, Figure 8 illustrates a preferred information configuration of predetermined customer information for a financial transaction customer linked to the financial means information and / or token agent information for token code-based financial transactions, Each information stored in the storage medium 110 may be added to at least one or more information items according to the intention of those skilled in the art to which the present invention is implemented, whereby the present invention is not limited.

Referring to FIG. 8, the customer information includes customer personal information including at least one of a name, a social security number, an address, etc. for the financial transaction customer, and a relationship between the financial transaction customer and the token agent. Characterized in that it comprises a token agent relationship information.

Referring to FIG. 8 according to a preferred embodiment of the present invention, the token agent relationship information preferably includes the financial transaction customer-owned wireless terminal information, whereby the token agent program mounted on the client terminal 145. Token code based financial transactions are performed.

9A and 9B illustrate an information structure of financial transaction information stored in the storage medium 110 according to an embodiment of the present invention.

In more detail, FIG. 9A is associated with the financial instrument ownership customer information (and / or customer wireless terminal information) for the token code based financial transaction and / or payment processing through the financial instrument, and / or the customer wireless terminal. As an exemplary configuration of information on the financial transaction means associated with the token agent information loaded in the bank, more specifically, at least one customer financial account information corresponding to the financial transaction means issued to the customer by a predetermined bank is included. It is an example of the financial transaction means information is made.

Those skilled in the art to which the present invention pertains, the financial transaction means is a predetermined card medium (e.g. MS (magnetic strip) card and / or IC (Integrated Circuit) card) with reference to Figure 9a And / or when linked to a wireless chip medium (e.g., an IC chip mounted on or detached from the customer wireless terminal), the linked media information (e.g., MS card and / or IC card and / or Or IC chip) and / or medium storage information (e.g., information stored in Track-II, if the medium is an MS card, etc.) stored on the card medium and / or the wireless chip medium. The present invention is not limited by the financial transaction information configuration items.

Referring to FIG. 9A, the financial transaction means information stored in the storage medium 110 may include a type of financial means corresponding to the financial transaction means and a bank account for issuing the financial transaction means (or a bank account corresponding to the financial transaction means). Bank information and the name of the customer who issued the financial transaction means, and also includes financial account information corresponding to the financial transaction means.

According to the method of the present invention, the financial account information, the financial account information corresponding to the financial transaction means is a predetermined account number for the financial transaction means, the establishment date of the bank account corresponding to the financial transaction means, and the customer It is preferable to include the branch information of the bank that issued the financial transaction means to the bank, and according to the implementation method, the financial account information may include information on the issuance of the bank account corresponding to the financial transaction means (not shown), and the settlement date (e.g., 2nd Friday of each January, May, August, November, etc.) (not shown) is preferably further included.

In more detail, FIG. 9B illustrates financial information associated with financial means owned customer information (and / or customer wireless terminal information) for token code-based payment processing, and / or financial information associated with token agent information mounted on the customer wireless terminal. As an example of the preferred information structure of the transaction means information, more specifically, an MS in which the payment means issued to the customer at a predetermined payment means issuer includes at least one track-II and / or track-III data ( Magnetic Stripe) card is an example of financial transaction means information included in the MS card.

Those skilled in the art to which the present invention pertains, with reference to this figure 9b, in addition to the financial transaction information included in the MS card (IC) card and / or in the customer's wireless terminal is mounted or detached It is possible to easily infer the desired information configuration of the financial transaction means information provided on the IC chip (for example, the information contained in the track-II of the MS card also appears in the IC card and / or payment means provided on the IC chip). Included), the present invention is not limited by the financial means information configuration items. For example, if the storage medium 110 stores the IC card and / or financial transaction information provided in the IC chip with a predetermined certificate, the information item includes information corresponding to the certificate (for example, a certificate). Issuer, copy of accredited certificate, etc.).

Referring to FIG. 9B, the financial transaction means information stored in the storage medium 110 includes credit card payment means, debit card payment means, cash card payment means, check card payment means, prepaid card payment means, and the like. Financial transaction means information including at least one financial account payment means, an electronic money payment means, a payment means issuer that issued the payment means, and the payment means (for example, from the payment means issuer). A customer name (for example, an English customer name) issued with a predetermined payment method, and also includes information stored in Track-II and / or information stored in Track-III of the payment method. It features.

According to the method of the present invention, the information stored in the track-II of the payment means comprises a 16-digit card number, the date of issuing the payment means, the expiration date of the payment means, and at least one CVC number. Preferably, the information stored in Track-III of the payment means further includes at least one affiliate information and / or additional service information associated with the payment means.

Hereinafter, the present invention is defined as a server 115, an information transmitting means 125, an information storing means 130, and / or a financial transaction server 1000 that provides a token code based financial transaction according to the present invention. The technical features of the will be described in detail. Also, for convenience, the customer information (and / or wireless terminal information, and / or wired terminal information) is referred to as customer information, and the customer information basically includes customer terminal information on which the token agent is mounted according to an implementation method. Shall be.

10 is a diagram showing an embodiment of a financial transaction processing system using a wireless terminal number according to an embodiment of the present invention.

In more detail, in FIG. 10, a token agent program included in the client terminal 145 generates a predetermined token code according to a token code generation method including at least one or more token generation information and a predetermined token generation algorithm. The present invention relates to a method of providing a token code to a predetermined financial transaction server 1000 through a predetermined customer terminal 145.

Referring to FIG. 10, the financial transaction server 1000 may include an interface unit 1005 for connecting at least one customer terminal 145 and a communication channel for financial transaction for a financial transaction based on a token code, and the interface. Receiving financial transaction information data for financial transactions based on the token code, financial transaction means customer information and at least one token code from the customer terminal 145 through the unit (1005) An information receiving unit 1010, an information checking unit 1015 for reading the received financial transaction information data and confirming the financial transaction means customer information and / or financial transaction information; and based on the confirmed customer information An extraction unit 1020 for extracting token agent information associated with the customer information from the storage medium 110, and the extracted token agent information. On the other hand, the token agent program provided in the client terminal 145 generates a predetermined token authentication code under the same condition (eg, the same token generation information and token generation algorithm) that generates the token code, and the customer terminal ( And an authentication unit 1025 for authenticating the validity of the received token code by comparing the token code received from the token code 145 with the generated token authentication code.

In addition, when the validity of the received token code is authenticated by the authentication unit 1025, the financial transaction server 1000 is included in the financial transaction information data and corresponds to the received financial transaction information. It is characterized in that it further comprises a financial transaction unit 1030 to perform.

In addition, when the financial transaction is normally performed by the financial transaction unit 1030, the financial transaction server 1000 links the at least one financial transaction process with the financial transaction means information and / or customer information. Characterized in that it further comprises a storage unit 1035 for storing in the storage medium 135.

In addition, when the financial transaction is normally performed by the financial transaction unit 1030, the financial transaction server 1000 transmits the financial transaction processing details to the customer terminal 145 through the interface unit 1005. Characterized in that it further comprises an information transmission unit 1040.

The interface unit 1005 connects at least one or more customer terminals 145 and a financial transaction communication channel for financial transactions based on the token code through a predetermined financial transaction network 140. The financial transaction network 140 may include at least one wired network 140 (eg, TCP / IP based Internet) and / or wired / wireless network 140 (eg, according to the type of the customer terminal 145). CDMA-based mobile communication network) and / or a value-added communication network () and / or a financial common network.

The information receiver 1010 includes at least one financial transaction information, financial transaction means customer information and / or financial transaction means information and token code transmitted from the customer terminal 145 through the interface unit 1005. And receive financial transaction information data.

According to the exemplary embodiment of the present invention, the financial transaction means customer information and / or financial transaction means information and token code are included in the financial transaction information data including the financial transaction information and received by the information receiver 1010. It is desirable to be.

According to another embodiment of the present invention, the financial transaction means customer information and / or financial transaction means information and token code is the financial transaction information data including the financial transaction information from the customer terminal 145 is the information Before receiving by the receiving unit 1010, it is preferably received through a separate token code transmission message (or data).

According to another embodiment of the present invention, the financial transaction means customer information and / or financial transaction means information and token code is the financial transaction information data including the financial transaction information from the customer terminal 145 is After receiving by the information receiving unit 1010 it is preferably received through a separate token code transmission (or data).

According to another embodiment of the present invention, when the token agent is mounted on the customer-owned wireless terminal, the information receiver may extract the wireless terminal information as caller information in the process of receiving the financial transaction information data.

The information confirming unit 1015 reads the financial transaction information data received by the information receiving unit 1010, thereby confirming the customer information and / or financial transaction means information of the financial transaction means included in the financial transaction information data. Characterized in that the extraction, and when the financial transaction means customer information and / or financial transaction means information is received through a separate token code transmission message (or data), the token code transmission message (or data) It is preferable to read and extract the financial transaction means customer information and / or financial transaction means information by reading the.

The extractor 1020 is connected to the financial transaction means customer information and / or financial transaction means information from the storage medium 110 by using the extracted financial transaction means customer information and / or financial transaction means information Extract token agent information and provide the token agent information to the authenticator 1025.

The authentication unit 1025 authenticates a predetermined token through the same token generation information and token generation algorithm used to generate the token code in the token agent program included in the client terminal 145 based on the extracted token agent information. Generating a code, and comparing the token code received from the customer terminal 145 and the generated token authentication code, characterized in that to authenticate the validity of the received token code, to the authentication unit 1025 Validation of the received token code by means of ensuring confidentiality, authentication, integrity and nonrepudiation for financial transactions based on the token code .

When the validity of the token code is verified by the authenticator 1025, the financial transaction unit 1030 may perform a financial transaction corresponding to the financial transaction information included in the financial transaction information data. .

According to the exemplary embodiment of the present invention, the financial transaction unit 1030 may perform a financial transaction corresponding to the financial transaction information by interworking with a predetermined financial system based on the financial transaction information.

According to the exemplary embodiment of the present invention, the financial transaction unit 1030 may perform a financial transaction corresponding to the financial transaction information, and generate a predetermined financial transaction processing history corresponding to the settlement processing / financial transaction]. The storage unit 1035 stores the generated one or more financial transaction processing details in a predetermined storage medium 135 in association with the financial transaction information and / or customer information. The transmission unit 1040 transmits the generated financial transaction processing history to the customer terminal 145 through the interface unit 1005.

According to another exemplary embodiment of the present invention, when the token code received from the client terminal 145 is generated in a challenge-response manner, the authenticator 1025 further has a function of dynamically generating a random challenge value. Preferably, the information transmitter 1040 includes a function for transmitting the generated challenge value to the customer terminal 145.

Hereinafter, the technical features of the present invention will be described through an embodiment in which the token agent is mounted on a wireless terminal. However, it should be appreciated that the technical features of the present invention are not limited to the implementation of the token agent in the customer wireless terminal.

11 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

In more detail, in FIG. 11, when the token agent is mounted on a customer wireless terminal, a wireless terminal (eg, mobile communication) for connecting a functional configuration of the customer terminal to a mobile communication network based on code division multiple access (CDMA) As described through the terminal), those of ordinary skill in the art to which the present invention pertains refer to another wireless terminal for generating a token code for the token code based financial transaction in addition to the mobile communication terminal with reference to FIG. For example, the functional configuration of a wireless data communication terminal or a portable internet terminal) can be easily inferred. As a result, the functional configuration of the wireless terminal equipped with the token agent program is not limited to that shown in FIG. 11, and may be variously made without violating the core technology of the present invention according to the type and / or technical characteristics of the wireless terminal. It can be modified and implemented.

In terms of hardware, a wireless terminal providing a mobile communication service includes an external body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery 1125, and internally, CDMA. (Code Division Multiple Access) A predetermined modem chip (e.g., MSM series modem chip of Qualcomm, Inc.) and various memories incorporating functions such as a modem, CPU / MPU (Central Processing Unit / Micro Processing Unit), vocoder, etc. Device, a duplexer filter that separates the transmission and reception signals from one antenna, a power amplifier that amplifies the transmission signal, a high power amplifier (HPA), an isolator that prevents the high power transmission signal from returning in reverse RF / IF SAW filter for eliminating out-of-band unwanted signals, frequency up-circuit in transmission path, frequency down-conversion circuit in receive path, and reference clock source VCTCXO (Voltage Controlled Temperature Compensated X-tal Oscillator), UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal. Is gradually integrated in the modem chip, and in addition to the core components for the mobile communication service, various functions for various multimedia services and / or additional services are integrated together.

Referring to FIG. 11, a wireless terminal for generating a predetermined token code for the token code-based financial transaction basically includes a controller 1105, a screen output unit 1110, a sound processor 1115, a key input unit 1120, and the like. An IC chip 1150 having a wireless processing unit 1130, a short-range communication unit 1135, a memory unit 1155, and a battery 1125 for supplying power, and mounted or detached from the wireless terminal according to an embodiment of the present invention. The IC chip 1150 further includes a functional configuration including an IC chip reader 1145 for reading / writing predetermined information or data.

The control unit 1105 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, and includes a predetermined program routine for providing a function specific to a wireless terminal from a predetermined memory device. And / or a bus for inputting and outputting program data and a predetermined electronic circuit (or integrated circuit) provided therefor, wherein the execution memory is selected from a predetermined memory device and / or a chipset in software. Is a generic term for program routines and / or program data which are loaded into and processed by the processor to perform unique functions (hence, in the present invention, a recording medium of a wireless terminal for generating token codes for token code based financial transactions). This control unit 1105 is shown for convenience a predetermined token agent program routine recorded in the And various functions to be implemented in the wireless terminal are realized by the control unit 1105, and the overall operation of the wireless terminal is controlled to realize the above functions. And it characterized in that the management. In particular, when power is input to the wireless terminal to perform a function of the controller 1105 for controlling and managing overall operations of the wireless terminal, an operating system routine, a system management routine, and / or stored in a predetermined memory element System variables are loaded into the execution memory and computed by the processor to serve as variables for providing an operating system, system management program, and / or mobile communication service.

The screen output unit 1110 is a liquid crystal display (LCD) driver for outputting a screen and is a key input unit 1120 by the controller 1105 (eg, a program routine for outputting predetermined information or data to the LCD). Key data generated through the &lt; RTI ID = 0.0 &gt;), various information, signals, and / or content (e. G., Text content, image content, and / or multimedia content) extracted and / or generated in the course of performing certain functions of the wireless terminal. ) Is output to a predetermined screen output device (for example, an LCD panel), and the screen output unit 1110 is connected to a screen output device (LCD) for the token code-based financial transaction. It is preferable to perform a function of outputting predetermined information required in the token code generation process.

The sound processor 1115 encodes a predetermined sound signal input from a microphone included in the wireless terminal and provides the sound to the controller 1105 or a predetermined sound extracted and / or generated by the controller 1105. A signal is decoded and output through a speaker. To this end, the sound processor 1115 includes a predetermined vocoder and a codec. Performs the function of the sound input means provided in the wireless terminal through the sound processor 1115 and the microphone, or performs the function of the sound output means provided in the wireless terminal through the sound processor 1115 and a speaker. .

The key input unit 1120 includes a predetermined key having at least one or more key buttons including a predetermined number key and / or a character key and / or a function key. Detects information (or signal) input from the keypad, and selects a predetermined key button provided on the keypad in a specific input mode and / or operation mode of the wireless terminal controlled by the controller 1105. When information (or a signal) is input, generating a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the input information (or signal), and providing the generated key event to the controller 1105. The control unit 1105 reads predetermined key data corresponding to the key event in the current input mode and / or operation mode of the wireless terminal (eg, each wireless unit). Read key data from the key table storing (managing) at least one key data corresponding to a specific key event in a terminal input mode and / or an operation mode), and / or defined to match the key event. A command for executing a predetermined function is read. The keypad including the key input unit 1120 and at least one key button interlocks with each other to perform a function of key input means provided in the wireless terminal.

The wireless processor 1130 may register a location and / or a slot mode and / or a power control in conjunction with the controller 1105 (eg, a program routine for providing a mobile communication service). Or providing a mobile communication service including a hand-off and / or call processing procedure, the base station corresponding to an end of the mobile communication network in the process of providing the mobile communication service. And an RF processing function (eg, performing antenna control, modulating, synthesizing, amplifying and / or filtering the radio frequency signal) for performing transmission and reception of the radio frequency signal. In particular, the wireless processing unit 1130 processes the information or signal transmitted from the wireless terminal to the base station into a CDMA stack to provide the mobile communication service, or receives predetermined information or signals from the CDMA stack received from the base station. It is characterized by providing a function for reading.

According to an embodiment of the present invention, the wireless terminal connects a base station on a predetermined mobile communication network and a predetermined wireless section through the wireless processing unit 1130, and the mobile communication network through a predetermined wired section including the base station. And / or to connect a predetermined communication channel with a predetermined server (or device) provided on the predetermined communication network that interworks with the mobile communication network.

According to an embodiment of the present invention, the wireless processor 1130 connects a predetermined communication channel with the token agent providing server 215 to mount a predetermined token agent program on the wireless terminal, and the controller 1105. ) And a predetermined token agent program may be received from the token agent providing server 215.

According to another exemplary embodiment of the present invention, when the token agent program generates a predetermined token code for the predetermined token code-based financial transaction in a challenge-response manner, the wireless processor 1130 may control the controller 1105. ) May connect a predetermined communication channel with the financial transaction server 1000, and receive a predetermined challenge value for generating the token code from the financial transaction server 1000.

According to another exemplary embodiment of the present invention, in the process of providing a predetermined token code generated by the token agent program to the financial transaction server 1000, the token code may be provided by the wireless terminal in a predetermined wire / wireless network 140. In the case of providing to the financial transaction server 1000 (for example, transmitting a portion of the generated token code to the financial transaction server 1000, or transmitting the generated token code to the financial transaction server 1000). ), The wireless processor 1130 connects a predetermined communication channel with the financial transaction server 1000 in cooperation with the control unit 1105, and the generated token is transmitted to the financial transaction server 1000. It is desirable to send a code.

The near field communication unit 1135 may be configured to perform infrared ray communication and / or radio frequency (RF) communication and / or Bluetooth and / or wireless LAN and / or Wi-Fi and ultra-wideband. A terminal (or device) and a short range wireless communication session are connected through at least one short range wireless communication means including an ultra wide band (UWB). The infrared communication, the RF communication, It includes a predetermined short range wireless communication module for short range wireless communication including Bluetooth, WLAN, Wi-Fi, and ultra-wideband communication, and includes a communication protocol and / or driver for the short range wireless communication in software.

According to the exemplary embodiment of the present invention, the wireless terminal connects a wireless section connecting a predetermined short range device 1140 and a predetermined short range wireless communication session through the short range communication unit 1135, and the short range device 1140 It is preferable to connect a predetermined communication channel with a predetermined server (or device) provided on a predetermined communication network through a wired section including a connected network 140.

According to one embodiment of the present invention, the local area communication unit 1135 communicates with the token agent providing server 215 through the local area device 1140 to mount a predetermined token agent program on the wireless terminal. And a token agent program from the token agent providing server 215 in cooperation with the controller 1105.

According to another exemplary embodiment of the present invention, when the token agent program generates a predetermined token code for the predetermined token code-based financial transaction in a challenge-response manner, the local area communication unit 1135 may control the controller 1105. And a predetermined communication channel with the financial transaction server 1000 through the short range device 1140, and receive a predetermined challenge value for generating the token code from the financial transaction server 1000. have.

According to another exemplary embodiment of the present invention, the short range device 1140 may be a customer terminal 145 processing the token code based financial transaction, and / or a short range communication module provided in the customer terminal 145. In this case, the local area communication unit 1135 connects the local area device 1140 with a predetermined local area communication channel in cooperation with the control unit 1105, and the token agent to the local area device 1140 through the local area communication channel. It is possible to provide the token code generated by the program.

The memory unit 1155 is input / output information when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the wireless terminal is performed. And / or a general term for a memory device for storing data; read only memory (ROM) corresponding to read-only memory, flash memory (FM), and electrically erasable and programmable read only (EEPROM). Memory) and the like. In general, the ROM stores system information that should not be deleted, and the flash memory stores operating system routines, call processing program routines, and / or application program routines provided through the wireless terminal and information or data therefor. The EEPROM stores terminal registration related parameters and a telephone number (eg, an address book) or at least one or more information and / or data extracted and / or generated while executing an application provided in the wireless terminal.

According to an embodiment of the present invention, the token generation information is read from an internal function configuration provided in the wireless terminal (for example, when the token agent program generates a token code in a time-synchronous manner, a timer provided in the wireless terminal). Read current time (or time) information from the token generation information), and / or stored in the token generation information area of the memory unit 1155, and / or included in the token agent program. The unit 1155 preferably stores at least one token generation information defined to be stored in a storage provided in the wireless terminal. For example, the memory unit 1155 stores MIN / ESN information for the wireless terminal in a NAM (Number Assignment Module) area, and / or at least one uniquely assigned to the token agent program in a predetermined token generation information area. You can store more than one secret key value.

The IC chip reader unit 1145 may be configured with IC chip related functions (eg, IC chip agent provided in the wireless terminal) provided through the IC chip standard including ISO / IEC 7816 and / or ISO / IEC 14443. Program) and the information and / or data exchange between the IC chip 1150 mounted or detached from the wireless terminal. For example, the IC chip reader unit 1145 provides information and / or data exchange between the IC chip agent program and the IC chip 1150 through an application protocol data unit (APDU).

Referring to the standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip 1150 mounted or detached from the customer wireless terminal may include a power supply (VCC), a reset signal (RST), a clock signal ( I / O interface to communicate with IC chip reader 1145 (e.g. command or data exchange, etc.) via contact points such as CLK, ground (GND), programming power supply (VPP), and / or input / output (I / O), etc. And a processor unit including at least one computing element including a central process unit (CPU), a micro process unit (MPU), and / or a coprocessor, a read only memory (ROM), and a random access (RAM). And a memory unit including at least one memory element including an EEPROM (Electrically Erasable and Programmable Read Only Memory), a flash memory (FM), and at least one memory element (eg, a ROM). In IC card A chip operating system (COS) that manages and operates resources is stored. When a predetermined power is supplied from the IC chip reader unit 1145 through a power supply (VCC) contact point of the input / output interface, the memory is stored. The COS stored in the unit is loaded into a predetermined execution memory to control the overall operation of the IC chip 1150 and based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the contact point of the clock signal CLK (APDU) Protocol Data Unit) controls the exchange of information or data between the IC chip 1150 and the IC chip reader 1145.

According to another exemplary embodiment of the present invention, the token agent program may be provided in the IC chip 1150 (for example, the token agent program may be recorded on a recording medium provided in the IC chip 1150). The present invention is not limited by this.

According to another exemplary embodiment of the present invention, when the token agent program is provided in the wireless terminal platform and / or the IC chip 1150, some of the token generation information may be included in the IC chip 1150. It is possible to be stored in the memory unit provided in the), by which the present invention is not limited.

Referring to FIG. 11, the token agent is received in connection with a predetermined token agent mounted on the wireless terminal and a token agent providing server 215 on the wired / wireless network 140, and / or by the token agent. It comprises a communication processing unit 1180 for generating a predetermined token code, or performing the communication function required to process the token code in a predetermined financial transaction.

Referring to FIG. 11 according to a preferred embodiment of the present invention, the token agent mounted on the wireless terminal device includes an input unit 1160 for receiving at least one or more information (or data) for generating the token code, and a predetermined token code. A reading unit 1165 that reads at least one token generation information required to generate the information; and a generating unit 1170 that generates a predetermined token code by applying the read token generation information to a predetermined token generation algorithm. And an output unit 1175 outputting the generated token code to the screen of the wireless terminal.

The input unit 1160 may receive at least one or more information (or data) for generating the token code in cooperation with the key input unit, and the input information (or data) generates a predetermined token code. Outputting a token generation command, and / or predetermined PIN (Personal Identification Number) information for internal authentication on the generated token code, and / or the generated token code on the wireless terminal screen, or the communication It includes at least one token code output command to be output to the outside of the wireless terminal through the wireless processing unit 1130 and / or short-range communication unit 1135 in conjunction with the processing unit 1180.

According to an embodiment of the present invention, the generation unit 1170 inputted from the key input unit through the input unit 1160 may be used as predetermined token generation information for generating a predetermined token code. And / or the token code generated by the generation unit 1170 may be combined with the token code in the process of being output (eg, outputted on the wireless terminal screen and / or outputted to the outside of the wireless terminal).

According to another exemplary embodiment of the present invention, when the token agent is provided in the IC chip 1150 mounted or detached from the wireless terminal, the PIN information may perform a user authentication procedure defined in the IC chip 1150. It is preferable to further comprise performing.

The token unit 1165 may be configured by the token agent from internal resources of the wireless terminal and / or the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150. Read at least one token code generation information defined to be used to generate a token code of.

According to the exemplary embodiment of the present invention, the reader 1165 preferably reads time (or time) information required for generating the token code from the internal resource of the wireless terminal (eg, a timer resource in the wireless terminal). And / or read a predetermined secret key value set for generating the token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150. It is preferable to read a predetermined MIN / ESN from the NAM region of the memory unit 1155.

In addition, in the case of token generation information defined to apply a predetermined hash function among the read token generation information, the reader 1165 applies the predetermined hash function to the read token generation information to generate corresponding token generation information. It is preferable to further include a function for converting (or limiting) to a value within a certain size.

According to another exemplary embodiment of the present invention, the reading unit 1165 is linked to the communication processing unit 1180 to generate a real time from the financial transaction server 1000 (for example, at random in the financial transaction server 1000). And receiving the predetermined challenge value generated as the predetermined token generation information used to generate the predetermined token code in the generation unit 1170.

The generation unit 1170 generates an unpredictable predetermined token code according to a predetermined token generation algorithm based on at least one token generation information read by the reader 1165. Preferably, the data block includes a predetermined length of data blocks.

The output unit 1175 outputs the token code generated by the generation unit 1170 to the screen of the wireless terminal, and the wireless processing unit 1130 and / or the local area communication unit 1135 according to an embodiment. The client terminal 145 which provides a portion (or all) of the generated token code to the financial transaction server 1000 through, and / or processes the token code based financial transaction through the local area communication unit 1135. Is preferably provided.

The communication processing unit 1180 receives a predetermined token agent to be mounted in the wireless terminal in connection with the token agent providing server 215 on the wired / wireless network 140, and through the control unit 1105. It is preferable to further comprise a functional configuration to be mounted (or installed) on the customer wireless terminal.

In addition, when the token agent receives a predetermined challenge value from the financial transaction server 1000 in the process of generating a predetermined token code, the communication processing unit 1180 may include the wireless processing unit 1130 and / or the local area communication unit. In connection with 1135, a predetermined communication channel may be connected to the financial transaction server 1000 (or the communication channel connection process may be omitted if the challenge value is received through a wireless message), and the financial transaction may be performed through the communication channel. It is desirable to receive a predetermined challenge value dynamically generated at the server 1000.

In addition, when the token agent and / or a portion of the token code generated by the token agent are transmitted to the financial transaction server 1000 through the wireless processing unit 1130 and / or the local area communication unit 1135, the communication The processor 1180 connects a predetermined communication channel to the financial transaction server 1000 by interworking with the wireless processor 1130 and / or the local area communication unit 1135 and through the communication channel to the financial transaction server 1000. It is preferable to transmit the generated token code and / or a portion of the token code.

In addition, when providing the token code and / or a portion of the token code generated by the token agent to the customer terminal 145 processing the token code based financial transaction through the local area communication unit 1135, the communication The processor 1180 connects the customer terminal 145 with a predetermined short range communication channel in association with the short range communication unit 1135, and generates the token code to the customer terminal 145 through the short range communication channel. Or it is desirable to send a portion of the token code.

According to an embodiment of the present invention, the wireless terminal may perform a function of the client terminal 145 for processing the token code based financial transaction, and for this purpose, the wireless terminal may process the token code based financial transaction. The financial processing unit 1185 may be further included.

According to an exemplary embodiment of the present invention, the financial processing unit may include a browser for providing a WAP wireless banking service and / or a function of a banking program for providing an IC chip wireless banking service. desirable.

12 illustrates a token code structure according to an embodiment of the present invention.

More specifically, FIG. 12 shows a preferred embodiment of the token code generated by the token agent program, and each information position constituting the token code can be changed by those skilled in the art. Those skilled in the art to which the present invention pertains will be able to easily infer a token code structure including more information with reference to FIG. 12, and the present invention is not limited thereto.

Referring to FIG. 12, a token code generated by the token agent program is generated through a hash algorithm for generating a predetermined token code based on at least one token generation information in the token agent as shown in FIG. Characterized by including a predetermined hashing code, at least one or more information may be further included in the hashing code according to the intention of the skilled person and / or information subject to intuitively authenticate through the token code.

Referring to (b) of FIG. 12, the token code is a predetermined hashing code generated by a hash algorithm for generating a predetermined hash token code defined in the token agent program. It may further comprise PIN information, or may further comprise predetermined user input information input by the user (customer) as shown in (d) of FIG. 12, or the user as shown in (d) of FIG. It is possible to further include hashed input information (eg, reducing the length of the user input information to within a predetermined length) to which the predetermined hash function is applied to the input information, and the present invention is not limited thereto.

Referring to (e) of FIG. 12, the token code further includes the PIN information and the user input information in a predetermined hashing code generated through a hash algorithm for generating a predetermined hash token code defined in the token agent program. Or hashed input information applying a predetermined hash function to the PIN information and the user input information to the hashing code, as shown in FIG. It is not limited.

13A and 13B illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 13A and 13B illustrate a 10-digit token code generated by the token agent provided in the client terminal in the case of performing a financial transaction by generating a predetermined token code in the client terminal 145. And transmitting the generated 10-digit token code from the client terminal through a predetermined wired / wireless network 140 to the financial transaction server 1000 and authenticating the token code from the financial transaction server 1000. For the sake of convenience, a process of inputting predetermined PIN information for running the token agent program and / or performing an internal authentication procedure in the token agent is omitted for convenience.

13A and 13B illustrate only the token code transmitted from the client terminal to the financial transaction server 1000 in order to efficiently explain the token code operation process, the present invention is generally used in the art. Those skilled in the art will appreciate that the token code may be transmitted to the financial transaction server 1000 in association with predetermined financial transaction information for the token code-based financial transaction, thereby allowing the present invention. This is not limited.

Referring to FIG. 13A, the reader 1165 may read the client terminal internal resources and / or the token agent internal code and / or by a predetermined token code generation command inputted by the input unit 1160 of the token agent program. Read at least one token code generation information defined by the token agent to be used to generate a predetermined token code from the memory unit 1155 and / or the memory unit included in the IC chip 1150 (1300). In operation 1305, the read one or more token generation information is provided to the generation unit 1170.

The generation unit 1170 generates a predetermined token code that is unpredictable by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1310) and outputting the token. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1315), and the financial transaction server 1000 through a predetermined wired / wireless network 140 in association with the communication processing unit (1180) (1180). In step 1320, the generated token code is transmitted, and it is preferable to further include financial transaction means information for providing a predetermined financial transaction in the process of transmitting the token code.

According to another exemplary embodiment of the present invention, when the customer terminal on which the token agent program is mounted performs a function of a predetermined customer terminal 145 for the token code based financial transaction, it communicates with the output unit 1175. The processor 1180 preferably transmits the wired / wireless network 140 to the financial transaction server 1000 in association with the generated token code and the financial transaction information.

Referring to FIG. 13B, the information receiver of the financial transaction server 1000 receives a predetermined token code transmitted from a customer terminal through the wired / wireless network 140 (1330), and the information receiver receives the token code. In the receiving process, the financial transaction means information for providing a predetermined financial transaction is extracted and provided to the extraction unit (1340), and the extraction unit is associated with (or received) the financial transaction means information from the storage medium 110. Predetermined token agent information (corresponding to a token code) is extracted (1345), and the extracted token agent information is provided to the authenticator (1340).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided to the client terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that of generating the token code in the agent (1355), and compares the token code received through the information receiver with the generated token authentication code for the token code. Validate (1360). If the validity of the token code is authenticated (1365), the financial transaction unit 1030 of the financial transaction server 1000 performs at least one financial transaction using the financial transaction means.

14A, 14B, and 14C illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 14A, 14B, and 14C illustrate a case in which a predetermined token code is generated in a client terminal 145 to perform a financial transaction. The financial agent is provided in the token agent provided in the client terminal 145. Receive a predetermined challenge value from the transaction server 1000 to generate a 10-digit token code, the generated 10-digit token code in the customer terminal 145 through the predetermined wired and wireless network 140 through the financial transaction server (1000) a preferred embodiment of the method for transmitting and authenticating the token code in the financial transaction server (1000), and for convenience, the token agent may be configured to run the token agent program and / or perform an internal authentication procedure in the token agent. The process of entering PIN information is omitted.

14A and 14B illustrate only the token code transmitted from the client terminal 145 to the financial transaction server 1000 in order to effectively explain the token code operation process, the present invention belongs to the present invention. It will be apparent to those skilled in the art that the token code may be transmitted to the financial transaction server 1000 in association with predetermined financial transaction information for the token code based financial transaction. The present invention is not limited by this.

Referring to FIG. 14A, the authentication unit included in the financial transaction server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium 110 (1400) and transmits the predetermined wireless terminal information to the customer terminal 145. Dynamically generating a predetermined challenge value to be transmitted to the provided token agent program (1405), and providing the wireless terminal information and the challenge value to the information transmitter, the information transmitter based on the wireless terminal information predetermined wired and wireless network The generated challenge value is transmitted to the customer terminal 145 through 140 (1410).

When the generated challenge value is transmitted to the customer terminal 145 loaded with the token agent program as described above, the authentication unit stores the challenge value transmitted to the customer terminal 145 in the storage medium 110 (1415). ).

Referring to FIG. 14B, the reader 1165 of the token agent program receives a predetermined challenge value received from the financial transaction server 1000 through the communication processor 1420 and includes the received challenge value. At least one token defined to be used by the token agent to generate a predetermined token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150 The code generation information is read (1425), and the read at least one token generation information is provided to the generation unit (1170) (1430).

The generation unit 1170 generates an unpredictable predetermined token code by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1435), and outputs the token code. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1440), and generates the generated token code to the financial transaction server 1000 through a predetermined wired / wireless network 140 in cooperation with the communication processing unit 1180. It is preferable to transmit the token code (1445), and further comprising financial transaction means information for providing a predetermined financial transaction in the process.

According to another exemplary embodiment of the present invention, when the client terminal 145 on which the token agent program is mounted performs a function of a predetermined client terminal 145 for the token code based financial transaction, the output unit ( 1175 and the communication processor 1180 may transmit the wired / wireless network 140 to the financial transaction server 1000 in association with the generated token code and the financial transaction information.

Referring to FIG. 14c, the information receiver of the financial transaction server 1000 receives a predetermined token code transmitted from the customer terminal 145 through the wired / wireless network 140 (1455), and the information receiver comprises the token. In the process of receiving a code, the financial transaction means information for providing a predetermined financial transaction is extracted and provided to the extraction unit (1465), and the extraction unit is associated with (or received) the wireless terminal information from the storage medium 110. And extracts predetermined token agent information (corresponding to the token token) (1470) and provides the extracted token agent information to the authenticator (1475).

When the token agent information is provided as described above, the authentication unit generates token information identical to the token generation information used to generate the token code in the token agent included in the customer customer terminal 145 based on the token agent information and / or Alternatively, the token agent generates a predetermined token authentication code through the same procedure as that of generating the token code (1480), and compares the token with the token token received through the information receiver and the generated token authentication code. Validate the code (1485). If the validity of the token code is authenticated (1490), the financial transaction unit 1030 of the financial transaction server 1000 performs at least one financial transaction using the financial transaction means.

15A and 15B illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 15A and 15B show that the token agent is mounted on a customer wireless terminal, and the financial agent performs a financial transaction using a generated token code in the wireless terminal during a financial transaction using a predetermined wired terminal. The token agent provided in the wireless terminal generates a 10-digit token code, and transmits the generated 10-digit token code to the financial transaction server 1000 through a predetermined customer terminal 155, the financial transaction server ( 1000, the preferred method of authenticating the token code. For convenience, the process of inputting predetermined PIN information to drive the token agent program and / or perform an internal authentication procedure in the token agent is omitted.

15A and 15B illustrate only the token code being transmitted from the financial transaction to the financial transaction server 1000 in order to efficiently explain the token code operation process, the present invention is common in the art. If the person having knowledge, the token code is included in the predetermined financial transaction information data for the token code-based financial transaction and the predetermined financial transaction information data including the financial transaction information and / or customer information to the financial transaction server It will be clearly understood that it is transmitted to 1000, whereby the present invention is not limited.

Referring to FIG. 15A, the reader 1165 may read the internal terminal of the wireless terminal and / or the token agent internal code and / or by a predetermined token code generation command inputted by the input unit 1160 of the token agent program. Read at least one token code generation information defined by the token agent to be used to generate a predetermined token code from the memory unit 1155 and / or the memory unit included in the IC chip 1150 (1500). In operation 1505, the read one or more token generation information is provided to the generation unit 1170.

The generation unit 1170 generates a predetermined token code that is unpredictable by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1510), and outputting the token code. The unit 1175 outputs the generated token code to the screen of the wireless terminal (1515).

When the token code is output on the screen of the wireless terminal as described above, the token code is inputted to the customer terminal 155 through a predetermined key input means provided in the customer terminal 155 (1520), or the wireless The terminal and the customer terminal 155 are transmitted to the customer terminal 155 through a predetermined short-range communication means provided in the customer terminal 155 (1520), the customer terminal 155 is the token code through a predetermined payment network 150 The transaction is transmitted to the financial transaction server 1000 (1525).

According to the exemplary embodiment of the present invention, the client terminal 155 transmits the token code to the financial transaction server 1000 through the payment network 150 for the token code based financial transaction. In operation 155, the token code, the financial transaction means information, and the predetermined financial transaction information for the token-based financial transaction are included in predetermined financial transaction information data and transmitted to the financial transaction server 1000.

Referring to FIG. 15B, the information receiver of the financial transaction server 1000 is transmitted from the customer terminal 155 through the payment network 150 including a predetermined token code, financial transaction information, and financial transaction information. Receiving financial transaction information data (1530), the information verification unit confirms the financial transaction means information from the financial transaction information data (1535), and provides the identified financial transaction information data to the extraction unit (1540).

The extracting unit provided with the financial transaction means information extracts (1545) predetermined token agent information associated with the financial transaction information (or corresponding token code) from the storage medium 110 (1545), and extracts the predetermined token agent information. The token agent information is provided to the authenticator (1540).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that of generating the token code in the agent (1555), and compares the token code received through the information receiver with the generated token authentication code for the token code. Check the validity (1560). If the validity of the token code is authenticated (1565), the financial transaction unit 1030 of the financial transaction server 1000 performs at least one financial transaction using the financial transaction means.

16A, 16B, and 16C illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 16A, 16B, and 16C illustrate that the token agent is mounted on a customer wireless terminal and performs a financial transaction using a generated token code in the wireless terminal during a financial transaction using a predetermined wired terminal. The token agent provided in the wireless terminal receives a predetermined challenge value from the financial transaction server 1000 to generate a 10 digit token code, and the generated 10 digit token code is stored in a predetermined customer terminal 145. Through the financial transaction server 1000 and through the financial transaction server 1000 to authenticate the token code. For convenience, the process of inputting predetermined PIN information to drive the token agent program and / or perform an internal authentication procedure in the token agent is omitted.

16A and 16B illustrate only the token code being transmitted from the financial transaction to the financial transaction server 1000 in order to efficiently explain the token code operation process, the present invention is common in the art. If the person having knowledge, the token code is included in predetermined financial transaction information data for the token code-based financial transaction and the financial transaction information data including the financial transaction means information and transmitted to the financial transaction server 1000. It will be clearly understood that the present invention is not limited thereto.

Referring to FIG. 16A, an authentication unit provided in the financial transaction server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium 110 (1600), and is provided in the wireless terminal. Dynamically generating a predetermined challenge value to be transmitted to the token agent program (1605), and providing the wireless terminal information and the challenge value to the information transmitter, the information transmitter based on the wireless terminal information, the predetermined payment network 140 In step 1610, the generated challenge value is transmitted to the wireless terminal.

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium 110 (1615).

Referring to FIG. 16B, the reader 1165 of the token agent program receives a predetermined challenge value received from the financial transaction server 1000 through the communication processor 1620 and includes the received challenge value. At least one token defined to be used by the token agent to generate a predetermined token code from the token agent internal code and / or a memory unit included in the memory unit 1155 and / or the IC chip 1150 The code generation information is read (1625) and the read at least one token generation information is provided to the generation unit (1170) (1630).

The generation unit 1170 generates an unpredictable predetermined token code by applying a hash algorithm for generating a token based on at least one token generation information provided from the reader 1165 (1635). The output unit 1175 outputs the generated token code to the screen of the wireless terminal (1640).

When the token code is output on the screen of the wireless terminal as described above, the token code is inputted to the customer terminal 145 through a predetermined key input means provided in the customer terminal 145 (1645), or the wireless The terminal and the customer terminal 145 are transmitted to the customer terminal 145 through predetermined short range communication means (1645), and the customer terminal 145 receives the token code through a predetermined payment network 140. The transaction is transmitted to the financial transaction server 1000 (1650).

According to the exemplary embodiment of the present invention, the client terminal 145 transmits the token code to the financial transaction server 1000 through the payment network 140 for the token code based financial transaction. In operation 145, the token code, financial transaction information for providing a predetermined financial transaction, and predetermined financial transaction information for a token-based financial transaction are included in predetermined financial transaction information data to the financial transaction server 1000. It is desirable to transmit.

Referring to FIG. 16C, the information receiver of the financial transaction server 1000 includes a predetermined token code, financial transaction information, and financial transaction information from the client terminal 145 through the payment network 140. Receiving the transaction information data (1655), the information confirmation unit confirms the financial transaction means information from the financial transaction information data (1660), and provides the identified financial transaction information data to the extraction unit (1665).

The extracting unit provided with the financial transaction instrument information extracts (1670) predetermined token agent information associated with the financial transaction instrument information (or corresponding token code) from the storage medium 110 (1670). The token agent information is provided to the authenticator (1675).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that generated by the token code in the agent (1680), and compares the generated token authentication code with the token code received through the information receiver for the token code. Validate (1685). If the validity of the token code is authenticated (1690), the financial transaction unit 1030 of the financial transaction server 1000 performs at least one financial transaction using the financial transaction means.

17 illustrates an implementation process of applying a token code-based financial transaction to Internet banking according to an embodiment of the present invention.

In more detail, in FIG. 17, in performing internet banking according to a conventional internet banking procedure, confidentiality, authentication, integrity, and integrity for the internet banking are based on a token code according to the present invention. As a method for implementing using the Internet banking authentication means that more firmly guarantee nonrepudiation, etc., the token agent is provided in the customer terminal 145 performing the Internet banking, the financial transaction of Figure 10 This is a case where the server provides a predetermined internet banking service in connection with the customer terminal 145.

Referring to FIG. 17, a customer terminal 145 (eg, a client terminal performing internet banking) connects to a server for internet banking (eg, a financial transaction server 1000 that provides an internet banking service) and authenticates a predetermined member. Log in through the process (1700), and in connection with the server as shown in Figure 18a to process a predetermined financial transaction in accordance with a predetermined financial transaction (for example, account transfer, etc.) corresponding to the Internet banking service (1705), During the financial transaction procedure, the server requests a predetermined token code as the financial transaction authentication means to the customer terminal 145 as shown in FIG. 18B.

According to one embodiment of the present invention, the token code request is preferably requested from the server to the customer terminal 145 for authentication of the overall financial transaction before the financial transaction procedure is started.

According to another exemplary embodiment of the present invention, the token code request is preferably requested from the server to the client terminal 145 to authenticate the financial transaction step during the financial transaction procedure. The server may further request financial transaction information and / or authentication information (eg, account password, security card number, authorized certificate, etc.) to the customer terminal 145.

According to another embodiment of the present invention, the token code request is preferably requested from the server to the customer terminal 145 for final authentication of the financial transaction before the financial transaction procedure is terminated.

If a predetermined token code is requested during the financial transaction procedure (1710), the client terminal 145 executes a predetermined token agent as shown in FIG. 18C, and the token agent performs predetermined token generation information and tokens. A predetermined token code is generated through a generation algorithm (1715).

According to an embodiment of the present invention, in the process of executing a predetermined token agent in the client terminal 145, a predetermined PIN input process for approving (or authenticating) a predetermined token code through the token agent is further performed. Preferably, and / or a predetermined PIN input process for approving (or authenticating) the token code generation according to the implementation method is performed through an accredited certificate provided in the customer terminal 145 (eg, accredited). When the predetermined authentication certificate authentication information is transmitted to the authentication server through a certificate, the authentication server may transmit the authentication result to the token agent and generate a predetermined token code in response to the authentication result.

When the token code is generated in the client terminal 145 through the above procedure, the client terminal 145 transmits a token code to the server, wherein the token code generation is performed according to the method of the present invention. If generated during the generation of the financial transaction information and the token code is transmitted to the server (1720).

The server receiving the token code from the customer terminal 145 extracts predetermined token agent information associated with the financial transaction means information from the storage medium 110 and based on the extracted token agent, the customer. The token agent provided in the terminal 145 generates a predetermined token authentication code through the same token generation information and token generation algorithm as used to generate the token code (1725), and the received token code and the generated token The validity of the received token code is verified by comparing an authentication code (1730).

If the validity of the received token code is not authenticated (eg, the token code and the token authentication code do not match) (1735), the server generates predetermined financial transaction error information, and the customer terminal 145. In operation 1740, the controller transmits the signal to the processor.

On the other hand, if the validity of the received token code is authenticated (for example, if the token code and the token authentication code match) (1735), the server performs a predetermined financial transaction corresponding to the financial transaction information through the financial transaction means. (For example, an internet banking-based financial transaction), a predetermined financial transaction processing history corresponding to the financial transaction processing result is generated, transmitted to the customer terminal 145, and output (1750). In addition, the server stores the generated financial transaction processing history in the storage medium 135 in association with the financial transaction means information (1755).

18A, 18B, 18C, 18D, 18E, and 18F illustrate an example of performing internet banking on a token code-based financial transaction according to an embodiment of the present invention.

In more detail, FIGS. 18A, 18B, 18C, 18D, 18E, and 18F use the token code as an authentication means for the financial transaction in a predetermined financial transaction process through the same procedure as in FIG. 17. As an example, those of ordinary skill in the art to which the present invention pertains may refer to the token in the internet banking process with reference to FIGS. 17, 18, 18b, 18c, 18d, 18e, and 18f. Various implementation methods using the code as a financial transaction authentication means may be easily inferred, and the present invention is not limited thereto.

FIG. 18A illustrates an example of performing a financial transaction corresponding to an account transfer among Internet banking procedures, and FIG. 18B illustrates a request for a predetermined token code as a financial transaction authentication number during the Internet banking procedure. When the "Generate Authentication Number" button is clicked, a predetermined token agent provided in the customer terminal 145 is executed as shown in FIG.

According to the exemplary embodiment of the present invention, it is preferable that a predetermined PIN input process is further performed to approve (or authenticate) the token agent use authority while the token agent provided in the client terminal 145 is executed. And / or the token agent use authority may be approved (or authenticated) according to an implementation method.

When a predetermined token code is generated in the token agent as shown in FIG. 18d, the generated token code is input as shown in FIG. 18e. According to an embodiment of the present invention, the token code generated by the customer by the token agent Is input through a predetermined key input means, and / or when the "OK" button is clicked on in Fig. 18D, it is possible for the generated token code to be automatically input by the token agent.

According to an embodiment of the present invention, the method for generating the token code in the client terminal 145 may be performed through at least one of the methods shown in FIGS. 13A and / or 14A and 14B. The present invention is not limited by the token code generation method.

When a predetermined token code is input as described above, the client terminal 145 transmits the input token code (and / or financial transaction information) to the server, and inputs a security card number as shown in FIG. 18B during the transmission process. , And / or it is preferable to perform the authentication process for the financial transaction further through the official certificate as shown in Figure 18f.

According to another exemplary embodiment of the present invention, as shown in FIG. 18C and FIG. 18D, a process of generating a predetermined token code through a predetermined token agent provided in the customer terminal 145 and inputting the same token as shown in FIG. 15a and / or 16a and 16b, as shown in FIG. 16a and 16b, the token agent provided in the customer wireless terminal may be replaced by generating and inputting a predetermined token code, and the present invention is not limited thereto.

19 illustrates an implementation process of applying a token code-based financial transaction to wireless banking according to an embodiment of the present invention.

More specifically, FIG. 19 shows more securely the confidentiality, authentication, integrity, and nonrepudiation of the wireless banking based on the token code according to the present invention in performing the wireless banking according to the conventional WAP wireless banking procedure. As an implementation method of using as a wireless banking authentication means that guarantees, the token agent is provided in a wireless terminal 145 for performing the wireless banking, the financial transaction server of Figure 10 is the wireless terminal 145 and This is for the case of providing a predetermined wireless banking service in association.

Referring to FIG. 19, a wireless terminal 145 (for example, a wireless terminal for performing wireless banking) connects to a server for wireless banking (for example, a financial transaction server 1000 for providing a wireless banking service) and authenticates a predetermined member. Log in through the process (1900), and in connection with the server as shown in Figure 20a to process a predetermined financial transaction in accordance with a predetermined financial transaction (eg, account transfer, etc.) corresponding to the wireless banking service (1905), During the financial transaction procedure, the server requests a predetermined token code from the wireless terminal 145 as the financial transaction authentication means as shown in FIG. 20B.

According to one embodiment of the present invention, the token code request is preferably requested from the server to the wireless terminal 145 for authentication of the overall financial transaction before the financial transaction procedure is started.

According to another exemplary embodiment of the present invention, the token code request is preferably requested from the server to the wireless terminal 145 to authenticate the corresponding financial transaction step during the financial transaction procedure. The server may further request financial transaction information and / or authentication information (eg, account password, security card number, authorized certificate, etc.) to the wireless terminal 145.

According to another embodiment of the present invention, the token code request is preferably requested from the server to the wireless terminal 145 for final authentication of the financial transaction before the financial transaction procedure is terminated.

If a predetermined token code is requested during the financial transaction procedure (1910), the wireless terminal 145 executes a predetermined token agent as shown in FIG. 20B, and the predetermined token generation information and token as shown in FIG. 20C. A predetermined token code is generated through a generation algorithm (1915).

When the token code is generated in the wireless terminal 145 through the above procedure, the wireless terminal 145 inputs the token code to the wireless banking interface as shown in FIG. 20c and transmits the token code to the server. If the token code is generated during the generation of the predetermined financial banking financial transaction information during WAP wireless banking, the generated financial transaction information and the token code are transmitted to the server (1920).

The server, which has received the token code from the wireless terminal 145, extracts predetermined token agent information associated with the financial transaction means information from the storage medium 110, and wirelessly based on the extracted token agent. The token agent provided in the terminal 145 generates a predetermined token authentication code through the same token generation information and token generation algorithm as used to generate the token code (1925), and the received token code and the generated token are generated. The validity of the received token code is verified by comparing authentication codes (1930).

If the validity of the received token code is not authenticated (eg, if the token code and token authentication code do not match) (1935), the server generates predetermined financial transaction error information, and the wireless terminal 145. It transmits to and outputs (1940).

On the other hand, if the validity of the received token code is authenticated (eg, if the token code and the token authentication code match) (1935), the server performs a predetermined financial transaction corresponding to the financial transaction information through the financial transaction means. For example, a wireless banking based financial transaction) is processed (1945), and a predetermined financial transaction processing history corresponding to the financial transaction processing result is generated and transmitted to the wireless terminal 145 as shown in FIG. 20D (1950). . In addition, the server stores the generated financial transaction processing history in the storage medium 135 in association with the financial transaction means information (1955).

20A, 20B, and 20C illustrate an example of performing wireless banking of a token code based financial transaction in accordance with an embodiment of the present invention.

In more detail, FIGS. 20A, 20B, and 20C are examples of using the token code as an authentication means for the wireless financial transaction in a predetermined wireless financial transaction process through the same procedure as in FIG. 19. Those skilled in the art to which the invention belongs, the token code in a wireless banking process (e.g., wire transfer through wireless banking) with reference to Figures 19, 20a, 20b and 20c 20d. Various implementation methods used as financial transaction authentication means may be easily inferred, and the present invention is not limited thereto.

FIG. 20A illustrates a method of performing a financial transaction corresponding to an account transfer among wireless banking procedures, and FIG. 20B illustrates a request for a predetermined token code as a financial transaction authentication number during the Internet banking procedure. If a key is entered, a predetermined token code is generated as shown in FIG. 20c.

According to an embodiment of the present invention, the method for generating the token code in the wireless terminal 145 may be performed through at least one of the methods shown in FIGS. 13A and / or 14A and 14B. The present invention is not limited by the token code generation method.

FIG. 20D outputs the financial transaction processing history corresponding to the transfer of funds, which means that the token code generated in the wireless terminal 145 is authenticated in the server as shown in FIG. 20C.

Those skilled in the art to which the present invention pertains can refer to Fig. 19, Fig. 20a, Fig. 20b and Fig. 20c, Fig. 20d, and refer to the IC chip-based wireless banking (for example, the IC chip mounted in the wireless terminal). It is easy to infer an implementation method for processing a predetermined wireless banking based financial transaction using the wireless banking authentication means and applying it to a wireless banking method in which the financial transaction processing information corresponding to the financial transaction is collectively transmitted to a server. It will be appreciated that the invention is in no way limited thereto. For example, if the token code-based wireless banking is applied to IC chip-based wireless banking, the wireless terminal 145 performs a predetermined financial transaction based on the IC chip to generate financial transaction processing information, and the financial transaction. The IC chip by generating a predetermined token code through the same process as in Figs. 20b and / or 20c before transmitting the information to the server, and transmitting the token code to the server in association with the financial transaction processing information. Confidentiality, authentication, integrity, and nonrepudiation of wireless banking to underlying wireless banking will be more firmly guaranteed.

According to the present invention, by providing a method and system for processing a financial transaction, it is possible for a customer to carry out a financial transaction, and more secure financial transactions are possible through a predetermined token code volatilized by time and / or by a random random variable. There is an advantage.

In addition, by using the token generation program information associated with the financial means owned customer information (and / or customer-owned wireless terminal information), financial means information (eg, financial account information, credit card information, debit card information, cash card) More convenient and safe financial transactions are possible without exposing information, check card information, prepaid card information, electronic money information, etc.).

Claims (52)

At least one financial transaction means information and / or the financial transaction means owned customer information in a predetermined information storage means and stored in a predetermined storage medium in association with predetermined token generation program information for a token generation program provided in the customer terminal An information storing step; A token code providing step of providing a predetermined token code generated by a token generating program included in the client terminal to the server when the client terminal accesses a server on a communication network and performs a predetermined financial transaction; In connection with the storage medium (or storage medium operating means) in the server, the financial transaction means information corresponding to the financial transaction and / or the financial transaction means owned customer information (and / or customer-owned wireless terminal information) Verifying token generating program information and authenticating validity of the token code using the token generating program information; And And a financial transaction processing step of processing the financial transaction in accordance with the validity authentication result in the server. The method of claim 1, wherein the financial transaction, A financial transaction processing method comprising a financial transaction using a wired terminal and / or a financial transaction using a wireless terminal. The method of claim 1, wherein the financial transaction, Payment processing A financial transaction processing method comprising a financial transaction, and / or account-related financial transactions such as bank transfer. The method of claim 1, wherein the financial transaction means, A financial transaction processing method comprising at least one financial account, a credit card, a debit card, a cash card, a check card, a prepaid card, and electronic money. The method of claim 1, wherein the customer terminal, A financial transaction processing method comprising a wireless terminal or a wired terminal. The method of claim 1, wherein the customer terminal, A financial transaction processing method comprising accessing the server through internet banking or mobile banking. The method of claim 6, wherein accessing a server through the mobile banking comprises: Connect in a swap mode, or A financial transaction processing method comprising connecting by an IC chip method. The method of claim 1, wherein the token code providing step, And a token generation program driving step of driving a token generation program provided in the customer terminal by using a predetermined code (or pin number or password) input through a predetermined input means at the customer terminal. Financial transaction processing method. The method of claim 1, wherein the token code providing step, Financial transaction processing method, characterized in that for providing the predetermined financial transaction information from the customer terminal to the server. The method of claim 1, And a token generation program providing step of providing a predetermined token generation program to the customer terminal in a predetermined token generation program providing means. The method of claim 1, And a data transmission step of transmitting, by the predetermined information transmission means, predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing to the customer terminal. The method of claim 1, Finance that stores predetermined financial transaction processing history (or payment approval) data corresponding to the financial transaction processing in a predetermined storage medium in association with the financial transaction information (and / or customer information) in a predetermined information storage means. Financial transaction processing method characterized in that it further comprises a transaction processing history storage step. The method of claim 1, The token code providing step, The client terminal further provides at least one or more authentication information (or secret code) associated with the financial transaction means to the server, The authentication step, Financial transaction processing method characterized in that for further authenticating the validity of the authentication information (or secret code). The method of claim 1, wherein the authentication step, A predetermined token authentication code corresponding to the received token code is referred to by referring to the token generation program information associated with the financial transaction means information and / or the financial transaction means customer information (and / or customer-owned wireless terminal information). Generating and comparing the token code and the token authentication code to authenticate the validity of the token code. A recording medium, comprising recording a program for executing the method of any one of claims 1 to 14. A client terminal which provides a predetermined token code generated by a predetermined token generation program to the server when performing a predetermined financial transaction by connecting to a server on a communication network; And A predetermined storage medium (or storage) for storing and managing at least one financial transaction means information and / or the customer information of the financial transaction means and the predetermined token generation program information for the token generation program provided in the client terminal. Media transaction means), the financial transaction means information corresponding to the financial transaction and / or the token generation program information associated with the financial transaction means owned customer information (and / or customer-owned wireless terminal information), and And a server for authenticating the validity of the token code by using token generation program information. The method of claim 16, wherein the server, The financial transaction processing system according to the validity verification result, characterized in that for processing the financial transaction. The method of claim 16, wherein the financial transaction, A financial transaction processing system comprising a financial transaction using a wired terminal and / or a financial transaction using a wireless terminal. The method of claim 16, wherein the financial transaction, Payment processing financial transactions, and / or financial transaction processing system comprising the account-related financial transactions, such as account transfer. The method of claim 16, wherein the financial transaction means, A financial transaction processing system comprising at least one of a financial account, a credit card, a debit card, a cash card, a check card, a prepaid card, and an electronic money. The method of claim 16, wherein the customer terminal, Financial transaction processing system comprising a wireless terminal or a wired terminal. The method of claim 16, wherein the customer terminal, Financial transaction processing system, characterized in that for accessing the server through the Internet banking or mobile banking. The method of claim 22, wherein accessing a server through the mobile banking, Connect in a swap mode, or A financial transaction processing system comprising an IC chip system for connection. The method of claim 16, wherein the customer terminal, And a token generation program provided in the customer terminal using a predetermined code (or pin number or password) input through a predetermined input means. The method of claim 16, wherein the customer terminal, And provide predetermined financial transaction information to the server. The method of claim 16, The financial transaction processing system, characterized in that further comprises a token generating program providing means for providing a predetermined token generating program to the customer terminal. The method of claim 16, And information transmitting means for transmitting the predetermined financial transaction processing history (or payment approval text) data corresponding to the financial transaction processing to the customer terminal. The method of claim 16, Further comprising information storage means for storing the predetermined financial transaction processing history (or payment approval professional) data corresponding to the financial transaction processing in a predetermined storage medium in association with the financial transaction means information (and / or customer information); Financial transaction processing system, characterized in that made. The method of claim 16, wherein the server, And further verifying the validity of the authentication information (or secret code) when the customer terminal further provides at least one or more authentication information (or secret code) associated with the financial transaction means. The method of claim 16, wherein the server, A predetermined token authentication code corresponding to the received token code with reference to the token generation program information associated with the financial transaction means information and / or the financial transaction means owned customer information (and / or customer-owned wireless terminal information). To generate and compare the token code and the token authentication code to verify the validity of the token code financial transaction processing system. A receiving unit for receiving a predetermined token code generated by a predetermined token generation program by a client terminal connected through a communication network for a predetermined financial transaction; A predetermined storage medium (or storage medium) that stores and manages at least one financial transaction information and / or customer information owned by the financial transaction means and predetermined token generation program information for a token generation program provided in the client terminal. A confirmation unit for confirming the token generation program information associated with the financial transaction means information corresponding to the financial transaction and / or the financial transaction means owned customer information (and / or the customer owned wireless terminal information) in association with the operation means; An authentication unit for authenticating the validity of the received token code by using the token generation program information; And And a financial transaction processing unit for processing the financial transaction according to the validity verification result. The method of claim 31, wherein the financial transaction, A financial transaction processing device comprising a financial transaction using a wired terminal, and / or a financial transaction using a wireless terminal. The method of claim 31, wherein the financial transaction, Payment processing financial transactions, and / or financial transaction processing apparatus characterized in that comprises the account-related financial transactions such as bank transfer. The method of claim 31, wherein the financial transaction means, A financial transaction processing apparatus comprising at least one financial account, a credit card, a debit card, a cash card, a check card, a prepaid card, and an electronic money. The method of claim 31, wherein the customer terminal, Financial transaction processing apparatus comprising a wireless terminal or a wired terminal. The method of claim 31, wherein the customer terminal, Financial transaction processing apparatus, characterized in that for accessing the server through the Internet banking or mobile banking. 37. The method of claim 36, wherein accessing a server via the mobile banking comprises: Connect in a swap mode, or A financial transaction processing apparatus comprising the IC chip connection. The method of claim 31, wherein the receiving unit, Financial transaction processing apparatus, characterized in that for further receiving predetermined financial transaction information from the customer terminal. The method of claim 31, wherein And a token generation program providing unit for providing a predetermined token generation program to the customer terminal. The method of claim 31, wherein And an information transmitting unit which transmits predetermined financial transaction processing history (or payment approval specialist) data corresponding to the financial transaction processing to the customer terminal. The method of claim 31, wherein And an information storage unit for storing predetermined financial transaction processing history (or payment approval) data corresponding to the financial transaction processing in a predetermined storage medium in association with the financial transaction means information (and / or customer information). Financial transaction processing apparatus, characterized in that. The method of claim 31, wherein The receiving unit, When the customer terminal further provides at least one or more authentication information (or secret code) associated with the financial transaction means, characterized in that further receiving, The authentication unit, Financial transaction processing apparatus, characterized in that for further authenticating the validity of the received authentication information (or secret code). The method of claim 31, wherein the authentication unit, A financial transaction comprising generating a predetermined token authentication code corresponding to the received token code by referring to the token generation program information, and comparing the token code with the token authentication code to authenticate validity of the token code. Processing unit. The financial transaction processing apparatus according to any one of claims 31 to 43, wherein Consists of a single device (or server), or A financial transaction processing apparatus comprising a plurality of devices (or servers). 44. A recording medium, comprising: a program for executing a function of the apparatus component of any one of claims 31 to 43; Token generation program; A communication unit which accesses a server on a communication network and handles transmission and reception of predetermined financial transaction-related data; And The token generating program is driven using a predetermined code (or pin number or password) input through a predetermined input means, and a predetermined token code generated by the token generating program is provided to the server through the communication unit. A control unit; Terminal device comprising a. The method of claim 46, wherein the terminal device, Terminal device comprising a wireless terminal or a wired terminal. The method of claim 46, wherein the terminal device, Terminal device, characterized in that for accessing the server through the Internet banking or mobile banking. 49. The method of claim 48, wherein accessing a server via the mobile banking comprises: Connect in a swap mode, or A terminal apparatus comprising the connection by an IC chip system. The method of claim 46, wherein the control unit, And provide predetermined financial transaction information and / or predetermined authentication information (or password) to the server through the communication unit. A recording medium comprising a program for executing a function of the device constituting part of any one of claims 46 to 50. A financial transaction instrument information data file that stores at least one financial transaction instrument information; A financial transaction means customer information data file that stores the financial transaction means customer information; And And a token generation program information data file provided to the financial transaction means owning customer terminal or storing predetermined token generation program information for a predetermined token generation program provided in the financial transaction means owning customer terminal. Characterized in that, At least one financial transaction means information data file, the financial transaction means customer information data file, and the token generating program information data file.

Images