KR20080043295A - Method for processing payment relay by using customer telephone - Google Patents

Abstract

A method for relaying payment with a payer phone is provided to process the payment without causing any operation error in the payer phone by installing a card reader in the phone, and enabling the phone to read payment tool information through the card read and transmit the payment tool information to a member shop server while a voice call channel is connected between the phone and the member shop server. A payment relay server connects a communication channel with a payer phone equipped with a card reader(900), and the payment relay server receives a payment approval request message including card information from the payer phone through the communication channel(950). The payment relay server checks the card information by using the payment approval request message including the card information and requests payment approval to a card company corresponding to the checked card information. The payment relay server receives a payment approval result from the card company, and transmits the received payment approval result to the payer phone and a member shop server(955).

Description

Method for Processing Payment Relay by Using Customer Telephone}

1 is a diagram showing the functional configuration of a call terminal according to an embodiment of the present invention.

2 is a diagram illustrating an appearance of a call terminal equipped with at least one card reader according to an embodiment of the present invention.

3 is a diagram illustrating an MS card in which predetermined payment means information is stored according to an exemplary embodiment of the present invention.

4 is a diagram illustrating an IC card in which predetermined payment means information is stored according to an exemplary embodiment of the present invention.

5 is a diagram illustrating a method of encrypting and transmitting payment means information in a symmetric key (or secret key) method in a call terminal according to an exemplary embodiment of the present invention.

6 is a diagram illustrating a method of encrypting and transmitting payment means information in a public key infrastructure structure in a call terminal according to an embodiment of the present invention.

7 is a diagram illustrating a method of encrypting and transmitting payment means information in an electronic envelope method in a communication terminal according to an embodiment of the present invention.

8A and 8B illustrate a method of encrypting and transmitting payment means information in a key exchange method in a communication terminal according to an embodiment of the present invention.

9 is a diagram illustrating a method of operating a call terminal for payment processing according to an embodiment of the present invention.

10 is a diagram showing the functional configuration of a call terminal according to another embodiment of the present invention.

11 is a diagram illustrating an appearance of a call terminal equipped with at least one card reader according to another embodiment of the present invention.

12 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another exemplary embodiment of the present invention.

13 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

14 is a diagram illustrating a method of encrypting and transmitting payment means information in a symmetric key (or secret key) method in a call terminal according to another exemplary embodiment of the present invention.

FIG. 15 is a diagram illustrating a method for encrypting and transmitting payment means information in a public key infrastructure in a call terminal according to another embodiment of the present invention.

16 is a diagram illustrating a method of encrypting and transmitting payment means information in an electronic envelope method in a communication terminal according to another embodiment of the present invention.

17A and 17B illustrate a method of encrypting and transmitting payment means information in a key exchange method in a call terminal according to another exemplary embodiment of the present invention.

18 is a diagram illustrating a method of operating a call terminal for payment processing according to another embodiment of the present invention.

19 is a view showing the functional configuration of a call terminal according to another embodiment of the present invention.

20 is a diagram illustrating an appearance of a call terminal equipped with at least one card reader according to another embodiment of the present invention.

22 is a diagram showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

FIG. 23 is a diagram for a method of encrypting and transmitting a payment approval request message in a symmetric key (or secret key) method in a call terminal according to another embodiment of the present invention.

FIG. 24 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal according to another embodiment of the present invention.

FIG. 25 is a diagram illustrating a method of encrypting and transmitting a payment approval request message in an electronic envelope method in a call terminal according to another embodiment of the present invention.

26A and 26B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in a communication terminal according to another embodiment of the present invention.

27A and 27B illustrate a method of operating a call terminal for payment processing according to another exemplary embodiment of the present invention.

28 is a diagram showing the functional configuration of a call terminal according to another embodiment of the present invention.

29 is a diagram illustrating an appearance of a call terminal equipped with at least one card reader according to another embodiment of the present invention.

30 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another exemplary embodiment of the present invention.

31 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

32 is a diagram illustrating a method for encrypting and transmitting a transmission approval request text in a symmetric key (or secret key) method in a call terminal according to another exemplary embodiment of the present invention.

33 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal according to another embodiment of the present invention.

34 is a diagram illustrating a method of encrypting and transmitting a transmission approval request text in an electronic envelope method in a call terminal according to another embodiment of the present invention.

35A and 35B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in a communication terminal according to another exemplary embodiment of the present invention.

36A and 36B illustrate a method of operating a call terminal for payment processing according to another exemplary embodiment of the present invention.

37 is a view showing the functional configuration of a call terminal according to another embodiment of the present invention.

38 is a diagram illustrating an appearance of a call terminal equipped with at least one card reader according to another embodiment of the present invention.

39 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another embodiment of the present invention.

40 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

FIG. 41 is a diagram for a method of encrypting and transmitting a payment approval request message in a symmetric key (or secret key) method in a call terminal according to another embodiment of the present invention.

42 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal according to another embodiment of the present invention.

43 is a diagram showing a method for encrypting and transmitting a transmission approval request text in an electronic envelope method in a call terminal according to another embodiment of the present invention.

44A and 44B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in a communication terminal according to another embodiment of the present invention.

45A and 45B illustrate a method of operating a call terminal for payment processing according to another exemplary embodiment of the present invention.

46 is a diagram showing the functional configuration of a call terminal according to another embodiment of the present invention.

47 is a diagram illustrating the appearance of a call terminal equipped with at least one card reader according to another embodiment of the present invention.

48 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another embodiment of the present invention.

49 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

50 is a diagram illustrating a method of encrypting and transmitting a payment approval request message in a symmetric key (or secret key) method in a call terminal according to another embodiment of the present invention.

51 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal according to another embodiment of the present invention.

FIG. 52 is a diagram illustrating a method for encrypting and transmitting a payment approval request message in an electronic envelope method in a call terminal according to another embodiment of the present invention.

53A and 53B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method at a communication terminal according to another embodiment of the present invention.

54A and 54B illustrate a method of operating a call terminal for payment processing according to another exemplary embodiment of the present invention.

<Description of main parts of drawing>

100: call terminal 125: card reader unit

140: communication processing unit 200: merchant server

300: payment server 400: bansa server

The present invention comprises the steps of connecting a communication channel with a payment customer phone equipped with a card reader in the payment relay server, and receives the full payment approval request message containing the card information from the payment customer phone via the communication channel in the payment relay server; Confirming card information through a payment approval request message including the received card information in a payment relay server, and requesting a payment approval to a card company (or a bank) corresponding to the confirmed card information; After receiving the payment approval result from the card company (or bank) in the server, the payment relay processing using the payment customer phone comprising the step of transmitting the received payment approval result to the payment customer phone and the payment target product (or service) seller It is about a method.

Conventional payment method after the telephone order using a telephone (telephone), and / or home shopping payment method using a telephone, the payment means information by voice after the telephone connection with the counselor through the telephone, and / or ARS through the telephone (Automatic Response Service) A method of inputting payment method information through a key button as a customer after connecting a voice call channel with a server has been mainly used. The payment method using the above-described phone is not only inconvenient to use, but also payment method information. Because the customer has to enter it manually, it contains a problem that a payment error may occur due to an incorrect operation.

Recently, the wired telephone network has evolved from the conventional inverter switching method to the electronic switching method, and in the form of an intelligent network capable of voice communication and data communication, and a VoIP service that adds a voice communication function to the data communication function also appeared. It was. In addition, the wireless telephone network (mobile communication network) is capable of both voice calls and data communication based on the Code Division Multiple Access (CDMA) stack.

An object of the present invention is to connect a communication channel with a payment customer phone equipped with a card reader at a payment relay server, and a payment approval request message including card information from the payment customer phone through the communication channel at a payment relay server. Receiving the card information through the payment approval request message including the received card information in the payment relay server, and requesting the payment approval to the card company (or bank) corresponding to the confirmed card information. And receiving a payment approval result from a card company (or a bank) at the payment relay server, and then transmitting the received payment approval result to a payment customer phone and a payment target product (or service) seller. It is to provide a payment relay processing method used.

The payment relay processing method using the payment customer phone according to the present invention comprises the steps of: connecting a communication channel with a payment customer phone equipped with a card reader at a payment relay server, and from the payment customer phone via the communication channel at a payment relay server; Receiving the full payment approval request message containing the card information, and checks the card information through the payment approval request message containing the received card information at the payment relay server, the card company (or bank) corresponding to the confirmed card information Requesting the payment approval and receiving the payment approval result from the card company (or bank) at the payment relay server, and then transmitting the received payment approval result to the payment customer phone and the payment target product (or service) seller. Characterized in that comprises a step.

Reference will now be made in detail to the principles of operation of the preferred embodiments of the present invention, with reference to the accompanying drawings and description. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be based on the contents throughout the present title.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify the terms so that those skilled in the art to clearly understand the technical features of the present invention to effectively understand, but the present invention It is by no means limited.

For example, in the following embodiment, the telephone is called a call terminal for convenience, the server (or terminal) is called a merchant server for convenience, and the financial company server is called a payment server for convenience.

In addition, if a person of ordinary skill in the art to which the present invention belongs, the technical configuration of the present invention is not used only for payment processing using a call terminal, and if the server shown in the following embodiment is a phone banking server, the call terminal It will be clearly understood that it can be used for a phone banking system using.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram showing the functional configuration of a call terminal 100 according to an embodiment of the present invention.

In more detail, FIG. 1 includes a predetermined card reader for payment processing of the purchased goods in a telephone order using a predetermined voice call and a product purchase process, and is provided from a predetermined customer-owned card through the card reader. As an example of an exemplary method for configuring a function of a call terminal 100 that reads predetermined payment means information and processes a payment, a person having ordinary knowledge in the technical field to which the present invention pertains may refer to FIG. Or it may be modified to infer the configuration of the various call terminal 100 function for the payment processing using the call terminal 100, the present invention includes all the implementation method inferred, the embodiment shown in Figure 1 It is not limited to this.

Referring to FIG. 1, the call terminal 100 basically communicates with a control unit 105, a memory unit, a key input unit 110, a voice processing unit 115, a screen output unit 120, and a tone processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. And converts the input / output voice signal into an electrical signal (and / or a digital signal) to operate and control a voice call function for transmitting and receiving through the voice call channel. At least one processor and execution memory (eg, registers and / or CPUs) including a central processing unit (CPU) / microprocessor unit (MPU) provided in the call terminal 100 to realize the functions of RAM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, characterized in that it is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140 to control a data channel defined in a telephone network (eg, an intelligent network and / or a mobile communication network) and / or a VoIP network connected to the communication processing unit 140. Connecting a predetermined data channel for data communication with at least one terminal (or server) based thereon, and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for hardware data communication. And the execution memo from a recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card to transmit to the merchant server 200, for this purpose the hardware for payment processing using the call terminal 100 The terminal 100 includes at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data, wherein the payment is performed by software using the call terminal 100. A program routine which is loaded into the execution memory from the recording medium provided in the communication terminal 100 and processed by the processor for processing. Characterized in that the generic program data.

Accordingly, the call terminal 100 shown in FIG. 1 is loaded into the execution memory from the recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit inputs or outputs information or data when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term of non-volatile memory for storage of at least one, including at least one storage means including EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. And a predetermined program routine required for the control unit 105 to perform a predetermined control function and program data (for example, data input or output for the program routine to perform a predetermined function). It is characterized by.

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then information corresponding to the key data. And performing a processing procedure, and / or acquiring an instruction for executing a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or intelligent network). It is preferable to generate the voice data by encoding by using a coding scheme that can be transmitted through).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding in a coding scheme corresponding to a stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to an embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by the predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115, at which time the voice processor 115 is used. Decodes the voice data by a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal (or Electrical signal) is output through a predetermined voice output device (eg, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 is provided with a predetermined vocoder and a codec. desirable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the speech signal (or electrical signal) by decoding by encoding scheme corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is desirable to include one or more specifications.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is an LCD (Liquid Crystal Display) by the control unit 105 while the call terminal 100 performs a voice call function and / or a payment processing function using the call terminal 100. And / or at least one or more information or data which is predefined or defined in real time to be output to a predetermined display device including a Cathode Ray Tube (CRT) and / or a CRT (Cathode Ray Tube). The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

The predefined information or data to be output from the call terminal 100 to the screen output device includes key data input through the key input unit 110 and / or components provided in the call terminal 100. Information (or data) stored or generated by the information, information (or data) transmitted / received through the communication processor 140, and / or a predetermined operation result performed by the communication terminal 100 (or data). ) At least one or more.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that provided to the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the speech data by encoding by a coding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is a general telephone). Network configuration connecting a switch and a wired communication section provided on a switching network (or an intelligent network), and performs a call processing procedure corresponding to a communication protocol standard defined in the general telephone switching network (or an intelligent network). It is preferable to connect the voice call channel with at least one other call terminal 100 (or server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack) by performing a call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is desirable to connect the voice call channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects wired communication segments through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processing unit 140 transmits and receives voice data encoded with at least one or more other call terminals 100 (or servers) encoded in a coding scheme corresponding to the telephone network and / or the VoIP network through the voice call channel. It features.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. And add (or assign) and perform data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the added (or assigned) data channel.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the communication processing unit 140 uses a predetermined data channel defined in the general telephone switching network (or an intelligent network). In addition to (or assigning) to the voice call channel, it is preferable to perform predetermined data communication in addition to the voice call with at least one other call terminal 100 (or a server) to which the call channel is connected through the data channel. .

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one other call terminal 100 (or server) connected with the call channel through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that the predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data communication standard defined in the general telephone switching network (or intelligent network). According to the present invention, it is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server), and predetermined data communication with at least one terminal (or server) through the data channel (or communication channel). Do this.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and perform a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / IEC Have (or own) a contact IC card (or wireless IC chip) based on the 7816 standard, and / or at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one track (for example, track II area) provided in the MS of the MS card by using the loading.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and the predetermined payment means information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit) It is characterized in that the interface to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit uses at least an electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and calls the predetermined payment means information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security for managing the function to generate and transmit to the merchant server 200 via the telephone network and / or VoIP network, and receives and processes the payment approval message corresponding to the payment approval request full text from the merchant server 200 It is characterized in that the application module 145 comprises a Secure Application Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication required by the call terminal 100 in the process of performing the electronic payment and / or electronic payment using the card. And / or security requirements, including integrity and / or nonrepudiation, can be secured within the call terminal 100 without using an authentication server (or payment server 300) on the network. As a safety device for performing in a reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). Encrypt or decrypt, add an authenticator to prevent forgery (or tampering) of the message, or store important information in the process of performing the security request function. It is characterized in that it performs a function.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) having a performance of 2 MIPS or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the call terminal 100 to perform a predetermined security request function ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, privilege acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / delete / discard / initialization / Reprocessing / cancellation command).

Referring to FIG. 1, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. An information reading unit 160 for reading means information and the payment means information are processed as a predetermined key tone through the tone processing unit 135 and transmitted to the affiliated store server 200 through the communication processing unit 140. It is characterized by comprising an information transmission unit 175 to.

In addition, the call terminal 100 is further provided with an information processing unit 165 for processing the number arrangement (and / or number structure) to prevent the payment means information is intercepted and / or intercepted and / or hacked Characterized in that made.

In addition, the call terminal 100 is characterized in that it further comprises an encryption processing unit 170 for encrypting in a predetermined encryption method in order to prevent the payment means information is intercepted and / or intercepted and / or hacked.

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call mode, the mode checker 155 determines whether the voice call mode is a simple voice call mode or a voice call-based payment processing mode according to the present invention. Characterized in that.

If the check result is that the operation mode of the call terminal 100 is a voice call-based payment processing mode, the mode checking unit 155 is a customer through the screen output unit 120 (and / or voice processing unit 115) By requesting the owning card to be interfaced through the card reader unit 125, the information reading unit 160 processes the card reader unit 125 to read predetermined payment means information from the customer-owned card.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read out by the information reader 160 through the card reader 125 may include at least one or more number arrays such as a 16-digit card number and / or an expiration date. It is preferable to comprise.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is a 16-digit account number and / or branch number It is preferable to include at least one or more number arrangements, such as.

That is, the payment means information read by the information reading unit 160 is a combination of numbers that allow the signal processing unit 135 to generate a predetermined key ring tone in a complex frequency code (DTMF) manner.

The information transmitting unit 175 processes the payment means information read by the information reading unit 160 to a predetermined data structure standard promised with the affiliated store server 200, and the payment means corresponding to the data structure standard. Information is generated through the tone processor 135 to generate a predetermined key tone, and is transmitted to the affiliated server 200 through the communication processor 140.

For example, if the payment means information read out by the information reader 160 is credit card payment means information, the information transmitter 175 may have a data structure such as "1234123412341234 * 0407". Where "1234123412341234" corresponds to a 16-digit card number, "0407" corresponds to an expiration date corresponding to "month / year" of 2 digits each, and "*" denotes the card number and the expiration date. Corresponding to the delimiter to be distinguished, the credit card payment means information is processed by the signal processing unit 135 as a key signal corresponding to the complex frequency code method, through the communication processing unit 140 to the merchant server 200. Is sent.

According to an embodiment of the present invention, the information transmitter 175 may further include a predetermined checksum in the payment means information in order to prevent a transmission / reception error caused by noise during transmission and reception via a key tone. As a result, a transmission / reception error regarding the payment means information can be prevented.

However, such payment means information may be exposed to eavesdropping and / or eavesdropping and / or hacking, and to prevent this, the processing unit is a combination of the numbers included in the payment means information in the merchant server 200 And processing the data into a data structure capable of restoring the original payment means information, wherein the processed payment means information is restored to the original payment means information in the affiliated store server 200.

For example, if the payment means information read out by the information reading unit 160 is credit card payment means information, the credit card payment means information is a 16-digit card number such as "1234123412341234", and "0407". And a four-digit validity period, wherein the processing unit performs a bit operation (for example, an XOR operation) on the 16-digit card number with a predetermined 16-byte key value, such as an entirely different 16-digit number such as "1357246714692358". After generating the card number, the four-digit expiration date is combined to process payment means information as "1357246714692358 * 0407", and the processed payment means information is "1234123412341234 * 0407" in the merchant server 200. The original payment method information such as is restored.

Of course, the method of processing the payment means information in the present invention is not limited to the above-described method, the above-described method is to the person having ordinary knowledge in the art to which the present invention belongs It is only one means for explaining the technical characteristic to process efficiently.

Alternatively, in order to prevent the payment means information from being exposed to eavesdropping and / or interception and / or hacking, the encryption processing unit 170 encrypts the payment means information by a predetermined encryption method. The encrypted payment means information is decrypted by a predetermined decryption method corresponding to the encryption method in the merchant server 200.

According to an exemplary embodiment of the present invention, in order to transmit the encrypted payment means information to the affiliated store server 200 in the form of a key tone, the encryption processing unit 170 may display the encrypted payment means information as a predetermined number. It is desirable to encrypt.

For example, if the payment means information read out by the information reading unit 160 is credit card payment means information, the credit card payment means information is a 16-digit card number such as "1234123412341234", and "0407". It includes a four-digit validity period, the encryption processing unit 170 encrypts the 16-digit card number by a predetermined encryption method to generate a completely different 16-digit card number, such as "2472354698671135", and then "0407" Combining the four-digit validity period, such as to generate encrypted payment means information, such as "2472354698671135 * 0407", the encrypted payment means information is decrypted by the merchant server 200, the original such as "1234123412341234 * 0407" It is restored to the payment means information.

Of course, the method of encrypting the payment means information in the present invention is not limited to the above-described manner, the illustrated method is to encrypt the payment means information to those of ordinary skill in the art to which the present invention belongs It is only one means for effectively explaining the technical characteristics.

According to another exemplary embodiment of the present invention, when it is difficult for the encryption processing unit 170 to encrypt the payment means information in the form of a number, the encryption processing unit 170 converts the encrypted payment means information in the form of a key tone. In order to transmit to the merchant server 200, it is preferable to convert the encrypted payment means information into numbers.

For example, the encryption processing unit 170 may divide the encrypted payment means information by three bits, and convert the three bits into a number of "0 to 7", whereby the encrypted payment means information is a key. It is transmitted to the affiliated server 200 in the form of a beep.

In addition, the encryption processing unit 170 may divide the encrypted payment means information by two bytes, and convert the two bytes into numbers up to five digits (for example, "0 to 65535"). The encrypted payment means information is transmitted to the affiliated store server 200 in the form of a key tone.

Of course, the method of converting the encrypted payment means information in the form of key tones in the present invention to a predetermined number for transmission to the affiliated store server 200 is not limited to the above illustrated manner, and the illustrated manner The technical features for efficiently explaining the technical feature for converting the encrypted payment means information in the form of key beep to a number for transmission to the merchant server 200 to those of ordinary skill in the art to which the present invention pertains It is only a means.

2 is a diagram illustrating an appearance of a call terminal 100 equipped with at least one card reader according to an embodiment of the present invention.

In more detail, Fig. 2 shows the appearance of a call terminal 100 having a predetermined contact IC card reader and an MS card reader in the call terminal 100 shown in Fig. Those skilled in the art will be able to infer various implementation methods in which at least one or more card readers are provided in the call terminal 100 by referring to and / or modifying the drawing 2. It includes all the inferred implementation method, and is not limited to the implementation method shown in FIG.

In FIG. 2, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 2, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 2, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

3 is a diagram illustrating an MS card in which predetermined payment means information is stored according to an exemplary embodiment of the present invention.

More specifically, Figure 3 is an embodiment of the MS card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 1, for convenience, The MS card shown in FIG. 3 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 3 to obtain credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III storage. It is possible to infer various implementation methods for storing the present invention), but the present invention includes all the implementation methods inferred above, and is not limited to the implementation methods illustrated in FIG.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 3, payment means information providing a payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

4 is a diagram illustrating an IC card in which predetermined payment means information is stored according to an exemplary embodiment of the present invention.

In more detail, Figure 4 is an embodiment of the IC card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 1, for convenience, FIG. 4 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact type IC card, and a person of ordinary skill in the art to which the present invention pertains may refer to and / or modify the present invention. Credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information in the memory of the IC card. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU ( A processor unit including at least one computing element including a micro process unit, and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), an electrically erasable and programmable read only (EEPROM) And a memory unit including at least one memory element including memory, flash memory (FM), and the like, in particular, at least one of the memory elements (eg, a ROM) is a chip for managing and operating internal resources of an IC card. operating system (Chip Operating System; COS) is stored, when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface COS stored in the memory unit is loaded into a predetermined execution memory The IC chip and the call terminal 100 are controlled through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip terminates at least one or more programs among programs that are loaded in the card terminal and is already driven, and drives a specific program among a plurality of programs stored in the card terminal, or the card. And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (e.g., in the case of Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit. Read a command provided from the terminal program via an input / output interface, and read or write at least one or more information or data stored in the data unit based on the read command, and as a result or read information or data It is characterized in that to provide to the terminal program via the input and output interface through the APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferably stored in the excluded region.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 4 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

FIG. 5 is a diagram illustrating a method of encrypting and transmitting payment means information in a symmetric key (or secret key) method in the call terminal 100 according to an exemplary embodiment of the present invention.

In more detail, Figure 5 is an embodiment of the present invention for encrypting and transmitting the payment means information in a symmetric key (or secret key) method in the call terminal 100 with the encryption function as shown in Figure 1, the present invention If one of ordinary skill in the art, with reference to the Figure 5 and / or modified in the call terminal 100 on the telephone network and / or VoIP network the payment means information in a symmetric key (or secret key) method Various implementation methods of encryption may be inferred, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 5 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the public certificate provided in the call terminal 100, the public certificate is the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in the IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or the call terminal 100 from the merchant server 200. It may be included in the interface screen provided in) and / or embedded in the communication program to communicate with the affiliated store server 200 on the call terminal 100, whereby the anti-invention is not limited.

Referring to FIG. 5, when predetermined payment means information is read by the information reading unit 160 of the call terminal 100, the predetermined payment means information is provided to the encryption processing unit 170 (500). The encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting payment means information from an authorized certificate provided in the call terminal 100 (505), and reads the read symmetric key (or The payment means information is encrypted using a secret key (510).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the symmetric key (or secret key) is k (key), the payment means information P (Plaintext), and the symmetric key (or secret) If the payment means information encrypted with the key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Ek (P) = C".

According to the method of the present invention, the encryption processing unit 170 encrypts the payment means information through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, It is preferable to include at least one or more of the International Data Encryption Algorithm (IDEA), and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment means information is encrypted through the symmetric key (or the secret key) as described above, the encryption processing unit 170 converts the encrypted payment means information into a number that can be processed in the form of key tones, the signal tone processing unit 135 515, and the tone processing unit 135 generates a key tone corresponding to the encrypted payment means information in a complex frequency code method (520), and then through the communication processing unit 140, the affiliate store server 200. (525).

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the symmetric key (or secret key) method, thereby reading the information from the information reading unit 160. Restore the payment means information, and generates a predetermined payment approval request full text through the payment means information to perform the payment processing procedure.

FIG. 6 is a diagram illustrating a method of encrypting and transmitting payment means information in a public key infrastructure structure in a call terminal 100 according to an exemplary embodiment of the present invention.

In more detail, Figure 6 relates to an embodiment of the present invention for encrypting and transmitting the payment means information in a public key infrastructure structure in the call terminal 100 with the encryption function as shown in Figure 1, In the art, various embodiments of the present invention can be inferred by referring to and / or modifying the drawing of FIG. 6 to encrypt the payment means information in a public key manner in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the present invention includes all the inferred implementation methods, and is not limited to the implementation method illustrated in FIG.

In this figure 6 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, the public certificate is provided in the call terminal 100 Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority issuing the public certificate to the call terminal 100, and the present invention is not limited thereto. .

Referring to FIG. 6, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (600). The encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment means information from the authorized certificate (605), and encrypts the payment means information through the extracted server-side public key ( 610).

Herein, the encryption function of the encryption processing unit 170 is called E (Encryption), the server means public key is k1 (key), the payment means information P (Plaintext), and the payment means encrypted with the server side public key. If the information is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). , DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH, or at least one of the above. Preferably, various types of encryption algorithms may be used. The invention is not limited.

For example, in the case of encrypting the payment means information through the RSA encryption algorithm, among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by different prime factors of n and a b, if the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a- 1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment means information is encrypted through the server-side public key as described above, the encryption processing unit 170 converts the encrypted payment means information into a number that can be processed in the form of key tones to provide to the tone processing unit 135 In operation 615, the tone processing unit 135 generates a key tone corresponding to the encrypted payment means information in a complex frequency code method (620) and transmits the key tone to the affiliated store server 200 through the communication processing unit 140. (625).

Thereafter, the merchant server 200 receiving the payment means information decodes the encrypted payment means information by a decryption method corresponding to the public key method, thereby restoring the payment means information read by the information reader 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

7 is a diagram illustrating a method of encrypting and transmitting payment means information in an electronic envelope method in the call terminal 100 according to an exemplary embodiment of the present invention.

In more detail, Figure 7 relates to an embodiment of the method for encrypting and transmitting the payment means information in an electronic envelope method in the call terminal 100 with the encryption function as shown in Figure 1, in the art If the knowledge of the present invention, by referring to and / or modifying the Figure 7 can be inferred from the various implementation methods for encrypting the payment means information in an electronic envelope method in the call terminal 100 on the telephone network and / or VoIP network However, the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 7 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority issuing the public certificate to the call terminal 100, and the present invention is not limited thereto. .

Referring to FIG. 7, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (700). The encryption processing unit 170 generates a random secret key for encrypting the payment means information using a secret key (symmetric key) method (705), and generates the generated secret key. In operation 710, the payment means information is encrypted.

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the secret key is r (random secret key), the payment means information P (Plaintext), and the payment means information encrypted with the secret key Suppose C (Ciphertext), the encryption function of the encryption processing unit 170 can be expressed by a formula such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data Encryption). It is preferable to include at least one of the algorithm (Algorithm), and various forms of encryption algorithm may be used, but the present invention is not limited by a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the payment means information. To this end, the encryption processing unit 170 extracts a predetermined server-side public key from the public certificate. In operation 715, the private key is encrypted using the server-side public key (720).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the undisclosed prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

If the payment means information is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 is a secret encrypted with the payment means information and the server-side public key encrypted with the secret key. Generates transaction data associated with a key, converts the transaction data into a number that can be processed in the form of key tones, and provides the transaction data to the tone processing unit 135 (725). The tone processing unit 135 uses a complex frequency code method. After generating a key tone corresponding to the transaction data (730), and transmits to the affiliated store server 200 through the communication processing unit 140 (735).

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the electronic envelope method, thereby restoring the payment means information read by the information reading unit 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

8A and 8B illustrate a method of encrypting and transmitting payment means information in a key exchange method in the call terminal 100 according to an exemplary embodiment of the present invention.

8A and 8B illustrate a method of encrypting and transmitting the payment means information in a key exchange method in a call terminal 100 having an encryption function as shown in FIG. In the art, various embodiments of the present invention can be inferred by referring to and / or modifying the drawing of FIG. 8 to encrypt the payment means information in a key exchange method in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the invention encompasses all of the inferred practice methods, and is not limited to the practice method shown in FIG.

In the figure 8 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read from the authorized certificate provided in the call terminal 100, and the authorized certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key can be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100, thereby. The present invention is not limited.

8A and 8B, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (800). If is provided, the encryption processing unit 170 is a message digest including a predetermined one-way hash function (for example, a hash code of a predetermined length regardless of the length of the payment means information) Message Digest (Message Digest) ) And a one-way hash function that cannot identify (or infer) the original message via the hash code (or message digest.) The call terminal 100 and the merchant server 200 have the same hash. Use a function to generate a predetermined message digest (805) and digitally sign the message digest by encrypting the message digest with the terminal-side private key (810).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the terminal-side private key is encrypted with t1 (13erminal side key), the message digest is m (message digest), and the terminal-side private key. If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the message digest using the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a predetermined random secret key for encrypting the payment means information by a secret key (symmetric key) method (815), and the payment means information and The message digest encrypted with the terminal-side private key and a copy of a certificate (eg, a certificate including a terminal-side public key) included in the public certificate are linked to each other and encrypted through the generated secret key (820).

Herein, the encryption function of the encryption processing unit 170 is called E (Encryption), the secret key is r (random secret key), the payment means information and the copy of the certificate P (Plaintext), and the encrypted payment with the secret key When the means information and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 can be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( It is preferable to include at least one or more of the International Data Encryption Algorithm, and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts a predetermined server-side public key from the authorized certificate in order to encrypt the secret key that encrypts the payment means information (825), and the payment using the server-side public key. The secret key encrypting the means information is encrypted (830).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

The payment means information, the message digest encrypted with the terminal-side private key, and a copy of the certificate including the terminal-side public key are linked to each other and encrypted through the generated secret key, and the secret key is passed through the server-side public key. When encrypted, the encryption processing unit 170 encrypts a copy of the certificate including the message digest and the terminal-side public key encrypted with the payment means information encrypted with the secret key and the terminal-side private key with the server-side public key. Generates predetermined transaction data in association with the secret key, converts the transaction data into a number that can be processed in the form of a key tone, and provides the transaction data to the tone signal processing unit 135 (835), and the tone processing unit 135 After generating a key beep corresponding to the transaction data in a complex frequency code method (840), the communication The processor 140 transmits the data to the affiliated server 200 through the processor 140 (845).

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the key exchange method, thereby restoring the payment means information read by the information reading unit 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

9 is a diagram illustrating a method of operating a call terminal 100 for payment processing according to an embodiment of the present invention.

In more detail, in FIG. 9, the call terminal 100 shown in FIG. 1 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a product, and orders a product through the call channel. And reading the predetermined payment means information through a card reader provided in the call terminal 100 in the course of performing a purchase procedure, through the voice call channel corresponding to the telephone network and / or the VoIP network. By providing a, as an implementation method for the operation method of the call terminal 100 to perform the payment processing for the purchase product through the payment means information in the merchant server 200, the present invention generally If the person with the knowledge of the present invention, by referring to and / or modifying the Figure 9 read the predetermined payment means information through the predetermined card reader in the call terminal 100 to the merchant By transmitting to the server 200 may be inferred various implementation methods for performing the payment process for the purchased product, the present invention includes all the inferred implementation methods, by the implementation method shown in Figure 9 It is not limited.

For example, in FIG. 9, the terminal performs an encryption procedure for predetermined payment means information read from the customer's own card. The encryption procedure is performed to satisfy the high security of the payment means information. As performed, it may be omitted in accordance with the intention of those skilled in the art, whereby the present invention is not limited.

Hereinafter, in FIG. 9, the call terminal 100 having the card reader shown in FIG. 1 is referred to as a "terminal" for convenience, and the affiliated store server 200 is referred to as a "server" for convenience.

Referring to FIG. 9, a terminal conforming to the functional configuration shown in FIG. 1 may include at least one telephone network (e.g., a general switched telephone network (or intelligent network), and / or a mobile communication network) and / or a VoIP network (e. (And / or UDP / IP) based wired communication network (IEEE 802.16x based portable Internet) to connect a predetermined communication channel with the server (900), according to the product ordering procedure provided by the server through the communication channel A process of selecting, ordering, and purchasing at least one or more purchased products is performed (905).

Those skilled in the art to which the present invention pertains, the terminal connects the predetermined communication channel with the server, and through the communication channel through a predetermined product order procedure (eg, ARS and / or counselor connection) As you will be familiar with key tones-based product ordering procedures, the detailed process is omitted for convenience.

During the product ordering procedure as described above, the terminal selects the operation mode of the terminal from the server in the simple voice call mode through a call channel corresponding to at least one or more telephone networks and / or VoIP networks from the server. In operation 910, it is determined whether a predetermined key tone is received to switch to a voice call-based payment processing mode providing a payment processing function using the call terminal 100 according to the present invention.

If a key tone is received for switching the operation mode of the terminal to the voice call based payment processing mode through the call channel (915), the terminal switches the operation mode to the voice call based payment processing mode using the call channel. 920, through the screen output means provided in the terminal to read predetermined payment means information from the customer-owned card through the card reader provided in the terminal, and / or the sound output means provided in the terminal Output through (925).

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (930). When predetermined payment means information is read from the terminal (935), the terminal performs an encryption procedure for the read payment means information (940).

Then, when the payment means information is encrypted (945), the terminal transmits the encrypted payment means information to the server by processing a call channel corresponding to the telephone network and / or VoIP network in the form of key tones (950). .

After transmitting the payment means information to the server as described above, the terminal checks whether the payment processing for the purchase price for the purchased product is completed through the payment means information in the server (955).

If payment processing is completed through the payment means information (960), the terminal performs an order procedure after the payment processing approval (965), the product orders and purchases using the call terminal 100 according to the present invention And finalize the payment process.

10 is a diagram showing the functional configuration of the call terminal 100 according to another embodiment of the present invention.

In more detail, Figure 10 includes a predetermined card reader for payment processing of the purchased goods in a telephone order and a product purchase process using a predetermined voice call, and the predetermined card reader from a predetermined customer-owned card through the card reader. As an embodiment of the method for configuring the call terminal 100 function to read and process payment method information of the present invention, a person having ordinary knowledge in the technical field to which the present invention pertains may refer to and / or see FIG. 10. It will be possible to deduce the configuration of the various call terminal 100 function for payment processing using the call terminal 100 by modifying, but the present invention includes all the implementation methods inferred, as shown in FIG. It is not limited.

Referring to FIG. 10, the call terminal 100 basically communicates with the control unit 105, the memory unit, the key input unit 110, the voice processing unit 115, the screen output unit 120, and the signal sound processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. It converts the input and output voice signal into an electrical signal (and / or digital signal) to operate and control the voice call function to transmit and receive through the voice call channel, for this purpose, the hardware of the call terminal 100 At least one processor and execution memory (eg, registers and / or Rs) including a central processing unit (CPU) / microprocessor unit (MPU) provided in the call terminal 100 for realizing functions. It comprises a AM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, and is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140, so that the data channel defined in the telephone network (eg, intelligent network and / or mobile communication network) and / or VoIP network to which the communication processing unit 140 is connected. Connecting a predetermined data channel for data communication with at least one terminal (or server), and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for the data communication in hardware. The execution memo from the recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card to transmit to the merchant server 200, for this purpose the hardware for payment processing using the call terminal 100 The terminal 100 includes at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data, wherein the payment is performed by software using the call terminal 100. A program routine which is loaded into the execution memory from the recording medium provided in the communication terminal 100 and processed by the processor for processing. Is a general term for the program data.

Accordingly, the call terminal 100 shown in FIG. 10 is loaded into the execution memory from a recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit inputs or outputs information or data when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term of non-volatile memory for storage of at least one, including at least one storage means including EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. And a predetermined program routine required for the control unit 105 to perform a predetermined control function and program data (for example, data input or output for the program routine to perform a predetermined function). It is characterized by.

According to the embodiment of the present invention, the memory unit for payment processing using the call terminal 100

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then information corresponding to the key data. And performing a processing procedure, and / or acquiring an instruction for executing a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or intelligent network). It is preferable to generate the voice data by encoding by using a coding scheme that can be transmitted through).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding in a coding scheme corresponding to the stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to the exemplary embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by the predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115, at which time the voice processor 115 is used. Decodes the voice data by a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal (or Electrical signal) is output through a predetermined voice output device (eg, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 is provided with a predetermined vocoder and a codec. desirable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable that the above specification is included.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is a liquid crystal display (LCD) by the control unit 105 in the process of the call terminal 100 performs a voice call function and / or payment processing function using the call terminal 100. At least one information or data that is predefined or defined in real time to be output to a predetermined display device including a display and / or a CRT (Cathode Ray Tube), and is output through a predefined interface screen. The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

The predefined information or data to be output from the call terminal 100 to the screen output device includes key data input through the key input unit 110 and / or components provided in the call terminal 100. Information (or data) stored or generated by the information, information (or data) transmitted / received through the communication processing unit 140, and / or (or data) corresponding to a predetermined operation result performed by the call terminal 100. It comprises at least one.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that provided to the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the speech data by encoding by a coding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is connected to a general telephone switching network). (Or a network configuration connecting the switch and the wired communication section provided on the intelligent network), by performing a call processing procedure corresponding to the communication protocol standard defined in the general telephone switching network (or intelligent network) It is preferable to connect the voice call channel with at least one or more other call terminals 100 (or servers).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack), and performing at least one call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is preferable to connect the voice communication channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects wired communication segments through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processing unit 140 transmits and receives voice data encoded with at least one or more other call terminals 100 (or servers) encoded in a coding scheme corresponding to the telephone network and / or the VoIP network through the voice call channel. It features.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. And add (or assign) and perform data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the added (or assigned) data channel.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the communication processing unit 140 uses a predetermined data channel defined in the general telephone switching network (or an intelligent network). In addition to (or assigning) to the voice call channel, it is preferable to perform predetermined data communication in addition to the voice call with at least one other call terminal 100 (or a server) to which the call channel is connected through the data channel. .

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one other call terminal 100 (or server) connected with the call channel through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data communication standard defined in the general telephone switching network (or intelligent network). According to the present invention, it is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server), and predetermined data communication with at least one terminal (or server) through the data channel (or communication channel). Do this.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and perform a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / IEC Have (or own) a contact IC card (or wireless IC chip) based on the 7816 standard and / or at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one track (for example, track II area) provided in the MS of the MS card by using the loading.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and the predetermined payment means information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit) It is characterized in that the interface to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit may be formed at least in electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and predetermined payment means information from the IC chip through the half-duplex transaction using the APDU It is characterized in that the interface to the call terminal (100).

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security for managing the function to generate and transmit to the merchant server 200 via the telephone network and / or VoIP network, and receives and processes the payment approval message corresponding to the payment approval request full text from the merchant server 200 It is characterized in that the application module 145 comprises a Secure Application Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication (required in the process of performing the electronic payment and / or electronic payment by the call terminal 100 using the card ( Security requirements, including authentication and / or integrity and / or nonrepudiation, can be secured within the call terminal 100 without using an authentication server (or payment server 300) on the network. As a safety device for performing a reliable and reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). ) Encrypts or decrypts, adds an authenticator to prevent forgery (or tampering) of the message, or stores important information in the process of performing the security request function. It is characterized in that it performs a function.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) having a performance of 2 MIPS or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one or more identifier, version, expiration date, issue date, code value required for the call terminal 100 to perform a predetermined security request function) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, immediate transaction cancellation protocols, collection protocols, SAM issuance protocols, (e.g. Card company) registration protocol, authorization acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / deletion / discard / Initialization / reprocessing / cancellation command).

Referring to FIG. 10, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. An information reading unit 160 that reads means information, and the merchant server 200 through the data channel corresponding to a communication channel connected to the affiliated store server 200 through the communication processing unit 140 with the payment means information; It characterized in that it comprises an information transmitting unit 175 to transmit to.

According to another exemplary embodiment of the present invention, the communication processor 140 connects a predetermined bansa server 400 with a predetermined data channel, and the information transmitter 175 transmits the data channel through the data channel. Characterized in that the transmission means information to the bansa server 400.

According to another embodiment of the present invention, the communication processing unit 140 connects a predetermined payment server 300 with a predetermined data channel, and the information transmission unit 175 via the data channel. The payment server 300 is characterized in that for transmitting the payment means information.

In addition, the call terminal 100 is further provided with an information processing unit 165 for processing the number arrangement (and / or number structure) to prevent the payment means information is intercepted and / or intercepted and / or hacked Characterized in that made.

In addition, the call terminal 100 is characterized in that it further comprises an encryption processing unit 170 for encrypting in a predetermined encryption method in order to prevent the payment means information is intercepted and / or intercepted and / or hacked.

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call / data communication mode, the mode checking unit 155 may use a data channel added to (or assigned to) the voice call channel for data communication. Mode or a data communication mode for payment processing according to the present invention.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, when the operation mode of the call terminal 100 is a data communication mode, the mode checking unit 155 is whether the data communication mode is a simple data communication mode or a data communication mode for payment processing according to the present invention. It is characterized by checking.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read by the information reader 160 through the card reader 125 includes at least one or more number arrays, such as a 16-digit card number and / or expiration date. It is preferable to make it.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is a 16-digit account number and / or branch number It is preferable to include at least one or more number arrangements, such as.

The information transmitting unit 175 promises the payment means information read by the information reading unit 160 with the affiliated store server 200 (and / or the bansa server 400, and / or the payment server 300). And the payment means information corresponding to the predetermined data structure standard and the payment means information corresponding to the data structure standard through the data channel in the communication processing unit 140 (and / or bansa server 400), and / Or to the payment server 300 to process.

For example, if the payment means information read out by the information reader 160 is credit card payment means information, the information transmitter 175 may have the data structure such as "1234123412341234 * 0407". Where "1234123412341234" corresponds to a 16-digit card number, "0407" corresponds to an expiration date corresponding to "month / year" for 2 digits each, and "*" distinguishes the card number from the expiration date. The credit card payment means information is the merchant server 200 (and / or bansa server 400, and / or payment server 300) through the data channel in the communication processing unit 140 Is sent to.

According to the exemplary embodiment of the present invention, the information transmitter 175 may further include a predetermined checksum for preventing a transmission / reception error for payment means information transmitted through the data channel. The transmission / reception error of the payment means information can be prevented.

However, such payment means information may be exposed to eavesdropping and / or eavesdropping and / or hacking, and to prevent this, the processing unit is a combination of the numbers included in the payment means information in the merchant server 200 ( And / or Bansa server 400, and / or payment server 300) characterized in that the processing process to a data structure that can restore the original payment means information, the processed payment means information is the merchant The server 200 (and / or bansa server 400, and / or payment server 300) is characterized in that the restoration to the original payment method information.

For example, if the payment means information read out by the information reading unit 160 is credit card payment means information, the credit card payment means information is a 16-digit card number such as "1234123412341234", and "0407". And a four-digit validity period, wherein the processing unit performs a bit operation (for example, an XOR operation) on the 16-digit card number with a predetermined 16-byte key value, such as an entirely different 16-digit number such as "1357246714692358". After generating the card number, the four-digit expiration date is combined to process payment means information such as "1357246714692358 * 0407", and the processed payment means information is the merchant server 200 (and / or bansa server). 400, and / or payment server 300 is restored to the original payment method information, such as "1234123412341234 * 0407".

Of course, the method of processing the payment means information in the present invention is not limited to the above-described method, the above-described method is to the person having ordinary knowledge in the art to which the present invention belongs It is only one means for explaining the technical characteristic to process efficiently.

Alternatively, in order to prevent the payment means information from being exposed to eavesdropping and / or interception and / or hacking, the encryption processing unit 170 encrypts the payment means information by a predetermined encryption method. The encrypted payment means information is decrypted by a predetermined decryption method corresponding to the encryption method in the merchant server 200 (and / or bansa server 400, and / or payment server 300).

For example, if the payment means information read out by the information reading unit 160 is credit card payment means information, the credit card payment means information is a 16-digit card number such as "1234123412341234", and "0407". It includes a four-digit validity period, the encryption processing unit 170 encrypts the 16-digit card number by a predetermined encryption method to generate a completely different 16-digit card number, such as "2472354698671135", and then "0407" Combining the four-digit validity period, such as "2472354698671135 * 0407" to generate encrypted payment means information, the encrypted payment means information is the merchant server 200 (and / or bansa server 400, and And / or decrypted by the payment server 300 to restore the original payment means information such as "1234123412341234 * 0407".

Of course, the method of encrypting the payment means information in the present invention is not limited to the above-described manner, the illustrated method is to encrypt the payment means information to those of ordinary skill in the art to which the present invention belongs It is only one means for effectively explaining the technical characteristics.

11 is a diagram illustrating an appearance of a call terminal 100 equipped with at least one card reader according to another embodiment of the present invention.

In more detail, Fig. 11 shows the appearance of a call terminal 100 provided with a predetermined contact type IC card reader and an MS card reader in the call terminal 100 shown in Fig. 10. Those skilled in the art will be able to infer various implementation methods in which at least one or more card readers are provided in the call terminal 100 by referring to and / or modifying the drawing 11. It includes all the inferred implementation method, and is not limited to the implementation method shown in FIG.

In FIG. 11, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 11, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 11, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

12 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another exemplary embodiment of the present invention.

In more detail, FIG. 12 illustrates an embodiment of an MS card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 illustrated in FIG. 10. The MS card shown in FIG. 12 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 12 to display credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III Would be able to infer a variety of exemplary ways to store having available) in field region, the present invention includes all embodiments in which the inference method, not limited to the exemplary method illustrated in the figure 12.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 12, payment means information providing a payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

13 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, FIG. 13 illustrates an embodiment of an IC card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 illustrated in FIG. 10. FIG. 13 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact IC card, and a person skilled in the art to which the present invention pertains may refer to and / or modify the present invention. Credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information in the memory of the IC card. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU ( A processor unit including at least one computing element including a micro process unit, and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), an electrically erasable and programmable read only (EEPROM) It consists of a memory unit consisting of at least one or more memory elements, including memory (FM), flash memory (FM), etc. Particularly, at least one of the memory elements (eg, ROM) manages and operates the internal resources of the IC card. Chip operating system (Chip Operating System; COS) is stored, when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface COS stored in the memory unit is loaded into a predetermined execution memory The IC chip and the call terminal 100 are controlled through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip terminates at least one or more programs among programs that are loaded in the card terminal and is already driven, and drives a specific program among a plurality of programs stored in the card terminal, or the card. And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (e.g., in the case of Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is arithmetic processed by a processor unit. Read a command provided from the terminal program via an input / output interface, and read or write at least one or more information or data stored in the data unit based on the read command, and as a result or read information or data It is characterized in that to provide to the terminal program via the input and output interface through the APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferably stored in the excluded region.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 13 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

14 is a diagram illustrating a method for encrypting and transmitting payment means information in a symmetric key (or secret key) method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 14 is a method for encrypting and transmitting the payment means information by a symmetric key (or secret key) method in the call terminal 100 with the encryption function as shown in Figure 16, the present invention If one of ordinary skill in the art, with reference to the Figure 14 and / or modified in the call terminal 100 on the telephone network and / or VoIP network the payment means information in a symmetric key (or secret key) method Various implementation methods of encryption may be inferred, but the present invention includes all the inferred implementation methods and is not limited to the implementation method shown in FIG.

In this figure 14 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read out from the official certificate provided in the call terminal 100, the official certificate to the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or the call terminal 100 from the merchant server 200. It may be included in the interface screen provided in) and / or embedded in the communication program to communicate with the affiliated store server 200 on the call terminal 100, whereby the anti-invention is not limited.

Referring to FIG. 14, when predetermined payment means information is read from the information reader 160 of the call terminal 100, the predetermined payment means information is provided to the cryptographic processor 170 (1400). The encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting payment means information from an authorized certificate provided in the call terminal 100 (1405), and reads the read symmetric key (or The payment means information is encrypted using a secret key (1410).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the symmetric key (or secret key) is k (key), the payment means information P (Plaintext), and the symmetric key (or secret) If the payment means information encrypted with the key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Ek (P) = C".

According to the method of the present invention, the encryption processing unit 170 encrypts the payment means information through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, It is preferable to include at least one or more of the International Data Encryption Algorithm (IDEA), and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When payment means information is encrypted through a symmetric key (or secret key) as described above, the communication processing unit 140 transmits the encrypted payment means information to the affiliate store through a communication protocol defined on the telephone network and / or the VoIP network. The server 200 transmits the data to the server 200 (1415).

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the symmetric key (or secret key) method, thereby reading the information from the information reading unit 160. Restore the payment means information, and generates a predetermined payment approval request full text through the payment means information to perform the payment processing procedure.

FIG. 15 is a diagram illustrating a method of encrypting and transmitting payment means information in a public key infrastructure structure in a call terminal 100 according to another exemplary embodiment of the present invention.

In more detail, FIG. 15 is an embodiment of the present invention for encrypting and transmitting the payment means information in a public key infrastructure structure in a call terminal 100 having an encryption function as shown in FIG. 16. In the art, various embodiments of the present invention can be inferred by referring to and / or modifying the drawing of FIG. 15 to encrypt the payment means information in a public key manner in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the invention includes all the inferred implementation methods, and is not limited to the implementation method illustrated in FIG.

In this figure 15 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 15, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (1500). The encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment means information from the authorized certificate (1505), and encrypts the payment means information through the extracted server-side public key ( 1510).

Herein, the encryption function of the encryption processing unit 170 is called E (Encryption), the server means public key is k1 (key), the payment means information P (Plaintext), and the payment means encrypted with the server side public key. If the information is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). , DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH, or at least one of the above. Preferably, various types of encryption algorithms may be used. The invention is not limited.

For example, in the case of encrypting the payment means information through the RSA encryption algorithm, among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by different prime factors of n and a b, if the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a- 1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment means information is encrypted through the server-side public key as described above, the communication processing unit 140 transmits the encrypted payment means information to the merchant server 200 through a network component on the telephone network and / or the VoIP network. Send (1515).

Thereafter, the merchant server 200 receiving the payment means information decodes the encrypted payment means information by a decryption method corresponding to the public key method, thereby restoring the payment means information read by the information reader 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

FIG. 16 is a diagram illustrating a method of encrypting and transmitting payment means information in an electronic envelope method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, FIG. 16 is an embodiment of the present invention for encrypting and transmitting the payment means information by an electronic envelope method in the call terminal 100 having the encryption function as shown in FIG. If the knowledge of the present invention can be inferred by referring to and / or modifying this figure 16, various implementation methods for encrypting the payment means information in an electronic envelope method in the call terminal 100 on the telephone network and / or VoIP network can be inferred. However, the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 16 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 16, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (1600). The encryption processing unit 170 generates a random secret key for encrypting the payment means information using a secret key (symmetric key) method (1605), and generates the generated secret key. In operation 1610, the payment means information is encrypted.

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the secret key is r (random secret key), the payment means information P (Plaintext), and the payment means information encrypted with the secret key Suppose C (Ciphertext), the encryption function of the encryption processing unit 170 can be expressed by a formula such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data Encryption). It is preferable to include at least one of the algorithm (Algorithm), and various forms of encryption algorithm may be used, but the present invention is not limited by a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the payment means information. To this end, the encryption processing unit 170 extracts a predetermined server-side public key from the public certificate. In operation 1615, the private key is encrypted using the server-side public key (1620).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

If the payment means information is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 is a secret encrypted with the payment means information and the server-side public key encrypted with the secret key. A transaction data associated with a key is generated and provided to the communication processor 140 (1625), and the communication processor 140 transmits the transaction data through a network component on a telephone network and / or a VoIP network. In operation 1630.

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the electronic envelope method, thereby restoring the payment means information read by the information reading unit 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

17A and 17B illustrate a method of encrypting and transmitting payment means information in a key exchange method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 17a and Figure 17b is an embodiment of the method for encrypting and transmitting the payment means information by a key exchange method in the call terminal 100 with the encryption function as shown in Figure 16, the invention In the art, various embodiments of the present invention may be inferred by referring to and / or modifying the drawing of FIG. 17 to encrypt the payment means information in a key exchange method in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the present invention encompasses all of the inferred practice methods, and is not limited to the practice method shown in FIG.

In this figure 17 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read from the authorized certificate provided in the call terminal 100, and the authorized certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100. The invention is not limited.

17A and 17B, when the information reading unit 160 of the call terminal 100 reads predetermined payment means information, the information is provided to the encryption processing unit 170 (1700). If is provided, the encryption processing unit 170 is a message digest including a predetermined one-way hash function (for example, a hash code of a predetermined length regardless of the length of the payment means information) Message Digest (Message Digest) ) And a one-way hash function that cannot identify (or infer) the original message via the hash code (or message digest.) The call terminal 100 and the merchant server 200 have the same hash. A message digest is generated (1705), and the digital signature is digitally signed (1710) by encrypting the message digest with the terminal-side private key.

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the terminal-side private key is encrypted with t1 (13erminal side key), the message digest is m (message digest), and the terminal-side private key. If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the message digest through the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a random secret key for encrypting the payment means information using a secret key (symmetric key) method (1715), and the payment means information and The message digest encrypted with the terminal-side private key and a copy of a certificate (eg, a certificate including a terminal-side public key) included in the public certificate are linked to each other and encrypted through the generated secret key (1720).

Herein, the encryption function of the encryption processing unit 170 is called E (Encryption), the secret key is r (random secret key), the payment means information and the copy of the certificate P (Plaintext), and the encrypted payment with the secret key When the means information and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 can be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment means information and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( It is preferable to include at least one or more of the International Data Encryption Algorithm, and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts a predetermined server-side public key from the authorized certificate to encrypt the private key that encrypts the payment means information (1725), and uses the server-side public key to make the payment. The secret key encrypting the means information is encrypted (1730).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

The message digest encrypted with the payment means information and the terminal-side private key and a copy of the certificate including the terminal-side public key are linked to each other and encrypted using the generated secret key, and the secret key is the server-side public key. When encrypted through the encryption processing unit 170, the server-side public copy of the certificate including the message digest encrypted with the payment means information and the terminal-side private key encrypted with the secret key and the terminal-side public key Generates predetermined transaction data in association with a secret key encrypted with a key, provides the generated transaction data to the communication processing unit 140 (1735), and the communication processing unit 140 transmits the transaction data to a telephone network and / or In operation 1740, the member server 200 transmits to the affiliated store server 200 through a network component on a VoIP network.

Thereafter, the merchant server 200 receiving the payment means information decrypts the encrypted payment means information by a decryption method corresponding to the key exchange method, thereby restoring the payment means information read by the information reading unit 160. In addition, a predetermined payment approval request text is generated using the payment means information to perform a payment processing procedure.

18 is a diagram illustrating a method of operating a call terminal 100 for payment processing according to another embodiment of the present invention.

In more detail, in FIG. 18, the call terminal 100 illustrated in FIG. 10 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a product, and orders a product through the call channel. And reading the predetermined payment means information through a card reader provided in the call terminal 100 in the course of performing a purchase procedure, through the data channel corresponding to the telephone network and / or the VoIP network. By providing a, as an implementation method for the operation method of the call terminal 100 to perform the payment processing for the purchase product through the payment means information in the merchant server 200, the present invention generally If the person having knowledge of the present invention, with reference to the Figure 18 and / or modified to read the predetermined payment means information through the predetermined card reader in the call terminal 100 to the merchant By transmitting to the server 200 may be inferred various implementation methods for performing the payment process for the purchased product, the present invention includes all the inferred implementation methods, by the implementation method shown in Figure 18 It is not limited.

For example, in FIG. 18, the terminal performs an encryption procedure for predetermined payment means information read from the customer-owned card. The encryption procedure is performed to satisfy the high security of the payment means information. As performed, it may be omitted in accordance with the intention of those skilled in the art, whereby the present invention is not limited.

Hereinafter, in FIG. 18, the call terminal 100 having the card reader shown in FIG. 10 is referred to as a "terminal" for convenience, and the affiliated store server 200 is referred to as a "server" for convenience.

Referring to FIG. 18, a terminal conforming to the functional configuration shown in FIG. 10 may include at least one telephone network (e.g., a general telephone switching network (or intelligent network), and / or a mobile communication network) and / or a VoIP network (e.g., TCP / IP (And / or UDP / IP) based wired communication network, IEEE 802.16x based portable Internet) to connect a predetermined communication channel with the server (1800), and according to the product ordering procedure provided by the server through the communication channel A procedure of selecting, ordering, and purchasing at least one or more purchased products is performed (1805).

Those skilled in the art to which the present invention pertains, the terminal connects the predetermined communication channel with the server, and through the communication channel through a predetermined product order procedure (eg, ARS and / or counselor connection) As you will be familiar with key tones-based product ordering procedures, the detailed process is omitted for convenience.

During the product ordering process as described above, the terminal checks whether the predetermined payment means information is requested from the merchant server 200 through a data channel corresponding to at least one or more telephone networks and / or VoIP networks (1810). If predetermined payment means information is requested from the server (1815), the terminal switches the operation mode to the payment processing mode using the data channel (1820), and through the card reader provided in the terminal, In operation 1825, a screen output means provided in the terminal is output to read predetermined payment means information from a customer's own card, and / or a voice output means provided in the terminal (1825).

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (1830). When predetermined payment means information is read from the terminal 1835, the terminal performs an encryption procedure on the read payment means information (1840).

Thereafter, when the payment means information is encrypted (1845), the terminal transmits the encrypted payment means information to the server through a data channel set in the telephone network and / or VoIP network (1850).

After transmitting the payment means information to the server as described above, the terminal checks whether the payment processing for the purchase price for the purchased product is completed through the payment means information in the server (1855).

If the payment processing is completed through the payment means information (1860), the terminal performs the order procedure after the payment processing approval (1865), by ordering and purchasing goods using the call terminal 100 according to the present invention; This completes the payment process.

19 is a diagram showing the functional configuration of the call terminal 100 according to another embodiment of the present invention.

In more detail, Fig. 19 includes a predetermined card reader for payment processing for the purchased goods in a telephone order using a predetermined voice call and a product purchase process, and is provided from a predetermined customer-owned card through the card reader. As an embodiment of the present invention, a method for configuring a function of a call terminal 100 that reads payment method information of a payment method, generates a predetermined payment approval request message including the read payment means information, and processes payment, Those skilled in the art may refer to and / or modify this drawing 19 to infer various call terminal 100 functional configurations for payment processing using the call terminal 100, but the present invention It includes all the implementation methods inferred above, and is not limited to the implementation method shown in FIG.

Referring to FIG. 19, the call terminal 100 basically communicates with a control unit 105, a memory unit, a key input unit 110, a voice processing unit 115, a screen output unit 120, and a tone processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. It converts the input and output voice signal into an electrical signal (and / or digital signal) to operate and control the voice call function to transmit and receive through the voice call channel, for this purpose, the hardware of the call terminal 100 At least one processor and execution memory (eg, registers and / or Rs) including a central processing unit (CPU) / microprocessor unit (MPU) provided in the call terminal 100 for realizing functions. It comprises a AM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, and is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140 to control a data channel defined in a telephone network (eg, an intelligent network and / or a mobile communication network) and / or a VoIP network connected to the communication processing unit 140. Connecting a predetermined data channel for data communication with at least one terminal (or server) based thereon, and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for hardware data communication. And the execution memo from a recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card, for this purpose CPU / MPU to the call terminal 100 for payment processing by using the call terminal 100 in hardware Characterized in that it comprises a bus (BUS) for inputting and outputting at least one processor and execution memory and predetermined data, including the; and the call terminal 100 for payment processing using the call terminal 100 by software A program routine and / or program data which are loaded into the execution memory from the recording medium provided in the package) and arithmeticly processed by the processor. It is characterized by.

In addition, the control unit 105 controls the predetermined security application module 145 provided in the call terminal 100 for payment processing using the call terminal 100, through the card reader unit 125. Generate a predetermined text based on predetermined payment means information from the customer-owned card, and operates and controls the transmission of the full text to the affiliated store server 200 through the communication processor 140. Including at least one processor including a CPU / MPU, an execution memory, and input / output data to the call terminal 100 for payment processing using the call terminal 100 in hardware. And a recording medium provided to the call terminal 100 to the execution memory for payment processing using the call terminal 100 by software. A program routine and / or program data that are loaded and computed by the processor may be collectively referred to.

Accordingly, the call terminal 100 shown in FIG. 19 is loaded into the execution memory from the recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit may include information input and output when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term for non-volatile memory for storing data, and at least one storage including electrically erasable and programmable read only memory (EEPROM) and / or flash memory (FM) and / or hard disk drive (HDD) in hardware. Means, and a predetermined program routine and program data (e.g., data input or output for the program routine to perform a predetermined function) required by the controller 105 to perform a predetermined control function. Characterized in that it is stored.

According to an embodiment of the present invention, the memory unit preferably stores a predetermined encryption key for payment processing using the call terminal 100.

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then information corresponding to the key data. And performing a processing procedure, and / or acquiring an instruction for executing a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or intelligent network). It is preferable to generate the voice data by encoding by using a coding scheme that can be transmitted through).

According to another exemplary embodiment of the present invention, when the communication processor 140 is connected to a mobile communication network, the voice processor 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding in a coding scheme corresponding to the stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to the exemplary embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by a predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115. In this case, the voice processor 115 is provided. ) Decodes the voice data by a voice coding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal ( Or an electrical signal) through a predetermined voice output device (for example, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 includes a predetermined vocoder and a codec. It is preferable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the speech signal (or electrical signal) by decoding by encoding scheme corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable that the above specification is included.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is an LCD (Liquid Crystal Display) by the control unit 105 while the call terminal 100 performs a voice call function and / or a payment processing function using the call terminal 100. And / or at least one or more information or data which is predefined or defined in real time to be output to a predetermined display device including a Cathode Ray Tube (CRT) and / or a CRT (Cathode Ray Tube). The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

Predefined information or data to be output from the call terminal 100 to the screen output device, the key data input through the key input unit 110, and / or the configuration is provided in the call terminal 100 Information (or data) stored or generated by an element, information (or data) transmitted / received through the communication processing unit 140, and / or a predetermined operation result performed by the call terminal 100 (or data). ) At least one or more.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that provided to the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the speech data by encoding by a coding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is connected to a general telephone). Network configuration connecting a switch and a wired communication section provided on a switching network (or an intelligent network), and performs a call processing procedure corresponding to a communication protocol standard defined in the general telephone switching network (or an intelligent network). It is preferable to connect the voice call channel with at least one other call terminal 100 (or server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack) by performing a call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is desirable to connect the voice call channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects the wired communication segment through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processing unit 140 transmits and receives voice data encoded with at least one or more other call terminals 100 (or servers) encoded in a coding scheme corresponding to the telephone network and / or the VoIP network through the voice call channel. It features.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. And add (or assign) and perform data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the added (or assigned) data channel.

* When the communication processing unit 140 is connected to a general telephone switching network (or intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data channel defined in the general telephone switching network (or intelligent network). Add (or assign) to the voice call channel, and perform predetermined data communication with the at least one other call terminal 100 (or server) connected to the call channel through the data channel in addition to the voice call. Do.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that the predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data communication standard defined in the general telephone switching network (or intelligent network). According to the present invention, it is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server), and predetermined data communication with at least one terminal (or server) through the data channel (or communication channel). Do this.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and perform a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving the payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / Have (or own) a contact IC card (or wireless IC chip) based on the IEC 7816 standard, and / or a card comprising at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one or more tracks (for example, track II area) provided in the MS of the MS card using the loaded.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and the predetermined payment means information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit) It is characterized in that the interface to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit uses at least an electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and calls the predetermined payment means information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security for managing the function to generate and transmit to the merchant server 200 via the telephone network and / or VoIP network, and receives and processes the payment approval message corresponding to the payment approval request full text from the merchant server 200 It is characterized in that the application module 145 comprises a Secure Application Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication required by the call terminal 100 in the process of performing the electronic payment and / or electronic payment using the card. Security requirements, including integrity and / or nonrepudiation, etc., within the call terminal 100 without using an authentication server (or payment server 300) on a payment network. As a safety device for performing a reliable and reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). ) Encrypts or decrypts, adds an authenticator that prevents forgery (or tampering) of the message, or provides important information in the process of performing the security request function. It is characterized by performing a function of storing.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) having a performance of 2 MIPS or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the call terminal 100 to perform a predetermined security request function ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, privilege acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / delete / discard / initialization / Reprocessing / cancellation command).

Referring to FIG. 19, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. An information reading unit 160 for reading the means information, a text generation unit 180 for generating a predetermined payment approval request text including the payment means information, and the payment approval text to the affiliated server 200; A professional processing unit 190 for receiving a payment approval message corresponding to the full payment approval request message through the professional transmission unit 185 and the communication processing unit 140 and performing an information processing procedure corresponding to the payment approval message. With) It characterized.

In addition, the call terminal 100 is characterized in that it further comprises a cryptographic processing unit 170 for encrypting in a predetermined encryption method in order to prevent the wiretap and / or eavesdropping and / or hacking the full payment approval request. .

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call / data communication mode, the mode checking unit 155 may use a data channel added to (or assigned to) the voice call channel for data communication. Mode or a data communication mode for payment processing according to the present invention.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, when the operation mode of the call terminal 100 is a data communication mode, the mode checking unit 155 is whether the data communication mode is a simple data communication mode or a data communication mode for payment processing according to the present invention. It is characterized by checking.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read by the information reader 160 through the card reader 125 includes at least one or more number arrays, such as a 16-digit card number and / or expiration date. It is preferable to make it.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is a 16-digit account number and / or branch number It is preferable to include at least one or more number arrangements, such as.

The full text generation unit 180 generates a predetermined payment approval request text including the payment means information read through the information reading unit 160, and in addition to the payment means information, The included information is preferably added in the merchant server 200.

When the payment means information read through the information reader 160 corresponds to credit card payment means information according to an embodiment of the present invention, the full text generation unit 180 is the credit card payment means information and merchant information And it is preferable to create a full credit card payment approval request including the total payment amount information.

In addition, when the payment means information read out through the information reader 160 corresponds to the check card payment means information, the full text generation unit 180 is the check card payment means information, merchant information and the total payment amount information It is desirable to create a full check card payment approval request including.

In addition, when the payment means information read out through the information reader 160 corresponds to the debit card payment means information, the full text generation unit 180 is the debit card payment means information, merchant information and the total payment amount information It is desirable to create a full debit card payment authorization request including.

In addition, when the payment means information read through the information reading unit 160 corresponds to the prepaid card payment means information, the full text generation unit 180 is the prepaid card payment means information, merchant information and the total payment amount information It is desirable to create a prepaid card payment authorization request containing the full text.

In addition, when the payment means information read through the information reading unit 160 corresponds to the account transfer payment means information, the full text generation unit 180 is the account transfer payment means information and merchant information (eg, merchant bank account) Information) and total payment amount information (eg, wire transfer amount information).

The expert transmission unit 185 transmits the payment approval request message generated by the expert generation unit 180 to the affiliated store server 200 through the data channel using the communication processor 140. Then, the affiliated store server 200 adds information such as merchant information, total payment amount information, and / or a document serial number to the payment approval request message, and completes a predetermined payment approval request text that can be processed through the payment means information. And complete, and transmits the completed payment approval request full text to a payment server 300 corresponding to the payment means information included in the payment approval request full text through a predetermined payment network, the payment server 300 is the After performing a predetermined payment processing procedure corresponding to the full payment approval request message, the predetermined payment approval text including the payment processing details corresponding to the payment processing procedure Generates and transmits it to the merchant server 200, the merchant server 200 transmits the payment approval to the specialized call terminal 100.

Meanwhile, in transmitting the full payment approval request message to the affiliated store server 200, the full payment approval request message may be exposed to eavesdropping and / or interception and / or hacking, to prevent the encryption processing unit 170. The encryption approval request message is characterized in that the encryption by a predetermined encryption method, the encrypted payment means information is characterized in that the merchant server 200 is decrypted by a predetermined decryption method corresponding to the encryption method. .

According to an embodiment of the present invention, the encryption method may include at least one of a symmetric key (or secret key) encryption method, a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. It is preferable to include the present invention, and other encryption methods other than the above encryption method may be used according to the intention of those skilled in the art, and the present invention is not limited thereby.

In addition, an encryption key for encrypting the full text of the payment approval request by the encryption processing unit 170 may be provided in the security application module 145 and / or stored on the memory unit. The invention is not limited.

The professional processing unit 190 provides a payment approval message including the payment processing details corresponding to the payment approval request text from the affiliate server 200 (and / or the payment server 300) through the communication processing unit 140. And receiving the payment processing details from the payment approval message and outputting the received payment details through the screen output unit 120.

20 is a diagram illustrating an appearance of a call terminal 100 equipped with at least one card reader according to another embodiment of the present invention.

In more detail, Fig. 20 shows the appearance of a call terminal 100 provided with a predetermined contact type IC card reader and an MS card reader in the call terminal 100 shown in Fig. 19. Those skilled in the art will be able to infer various implementation methods in which at least one or more card readers are provided in the call terminal 100 by referring to and / or modifying the drawing 20. It includes all the inferred implementation method, and is not limited to the implementation method shown in FIG.

In FIG. 20, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 20, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 20, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

21 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another exemplary embodiment of the present invention.

More specifically, Figure 21 is an embodiment of the MS card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 19, for convenience The MS card shown in FIG. 21 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 21 to provide credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III Would be able to infer a variety of exemplary ways to store having available) in field region, the present invention includes all embodiments in which the inference method, not limited to the exemplary method illustrated in the figure 21.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 21, payment means information for providing a payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

22 is a diagram showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, FIG. 22 illustrates an embodiment of an IC card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 shown in FIG. 19. FIG. 22 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact type IC card, and a person skilled in the art to which the present invention pertains may refer to and / or modify the present invention. Credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information in the memory of the IC card. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU ( A processor unit including at least one computing element including a micro process unit, and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), an electrically erasable and programmable read only (EEPROM) And a memory unit including at least one memory element including memory, flash memory (FM), and the like, in particular, at least one of the memory elements (eg, a ROM) is a chip for managing and operating internal resources of an IC card. Operating system (Chip Operating System; COS) is stored, when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface COS stored in the memory unit is loaded into a predetermined execution memory The IC chip and the call terminal 100 are controlled through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip terminates at least one or more programs among programs that are loaded in the card terminal and is already driven, and drives a specific program among a plurality of programs stored in the card terminal, or the card. And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (e.g., in the case of Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit. Read a command provided from the terminal program via an input / output interface, and read or write at least one or more information or data stored in the data unit based on the read command, and as a result or read information or data It is characterized in that to provide to the terminal program via the input and output interface through the APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferably stored in the excluded region.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 22 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

FIG. 23 is a diagram illustrating a method for encrypting and transmitting a payment approval request message in a symmetric key (or secret key) manner in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 23 illustrates an embodiment of the present invention for encrypting and transmitting the payment approval request message in a symmetric key (or secret key) manner in a call terminal 100 having an encryption function as shown in FIG. If there is a general knowledge in the art, refer to this diagram 23 and / or modified to the symmetric key (or secret key) the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network It will be able to infer various implementation methods of encryption in a manner, but the present invention includes all the implementation methods inferred above, and is not limited to the implementation method shown in FIG.

In this figure 23 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the public certificate provided in the call terminal 100, the public certificate is the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or the call terminal 100 from the merchant server 200. It may be included in the interface screen provided in) and / or embedded in the communication program to communicate with the affiliated store server 200 on the call terminal 100, whereby the anti-invention is not limited.

* Referring to Figure 23, when a predetermined payment approval request is generated in the full text generation unit 180 of the call terminal 100, it is provided to the encryption processing unit 170 (2300), the payment approval request If the expert is provided, the encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting the payment approval request text from the official certificate provided in the call terminal 100 (2305), and reads the readout. The full text of the payment approval request is encrypted using a symmetric key (or secret key) (2310).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the symmetric key (or secret key) is k (key), the full payment approval request is P (Plaintext), and the symmetric key (or If the full payment approval request encrypted with a secret key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by a formula such as "Ek (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack It is preferable to include at least one or more of an International Data Encryption Algorithm (IDEA), and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment approval request expert is encrypted through the symmetric key (or the secret key) as described above, the communication processing unit 140 transmits the encrypted payment approval request message through the communication protocol defined on the telephone network and / or the VoIP network. Transmission to the affiliate server 200 (2315).

Thereafter, the merchant server 200 receives the payment approval request text and decrypts it using the symmetric key (or secret key) method, and adds (or inserts) predetermined payment information to the decrypted payment approval request text. Alternatively, after the replacement, the payment approval request message is transmitted to the payment server 300 corresponding to the payment means information included in the payment approval request message, thereby performing a payment processing procedure through the payment approval request message.

FIG. 24 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 24 is an embodiment of the present invention, which encrypts and transmits the payment approval request message in a public key infrastructure structure in a call terminal 100 having an encryption function as shown in FIG. 19. If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network by referring to and / or modifying the present Figure 24 It may be inferred, but the present invention encompasses all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 24 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 24, when a predetermined payment approval request text is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (2400), and the payment approval request expert is provided. When the encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment approval request message from the authorized certificate (2405), the encryption approval request message is obtained through the extracted server-side public key. Encrypt (2410).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the payment approval request full text P (Plaintext), and the server-side public key encrypted payment When the full text of the approval request is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). ), DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH is preferably included at least one or more, in addition to various encryption algorithms may be used, but by a specific encryption algorithm The present invention is not limited.

For example, in the case of encrypting the full payment approval request message through the RSA encryption algorithm among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by the different prime factors of n is a. And b, if the published index (e.g., 3 or 216+) is e, and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a -1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment approval request expert is encrypted through the server-side public key as described above, the communication processing unit 140 transmits the encrypted payment approval request message to the merchant server 200 through a network component on the telephone network and / or the VoIP network. And transmit (2415).

Thereafter, the merchant server 200 receives the payment approval request text and decrypts it using the public key method, and adds (or inserts) and / or replaces predetermined payment information in the decrypted payment approval request text. The payment approval request message is transmitted to the payment server 300 corresponding to the payment means information included in the payment approval request message, thereby performing a payment processing procedure through the payment approval request message.

FIG. 25 is a diagram illustrating a method for encrypting and transmitting a payment approval request message in an electronic envelope method in a call terminal 100 according to another embodiment of the present invention.

In more detail, FIG. 25 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in an electronic envelope method in the call terminal 100 having an encryption function as shown in FIG. 19, Those skilled in the art may refer to and / or modify this drawing 25 to infer various implementation methods for encrypting the full text of the payment approval request in an electronic envelope method in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the invention encompasses all of the inferred practice methods, and is not limited to the practice method shown in FIG.

In this figure 25 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 25, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (2500), and the payment approval request expert is provided. The encryption processing unit 170 generates a random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (2505), and generates the secret. The full text of the payment approval request is encrypted using a key (2510).

Here, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the payment approval request full text P (Plaintext), and the payment approval request encrypted with the secret key When the full text is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data). It is preferable to include at least one or more of the Encryption Algorithm, and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the full payment approval request message. For this purpose, the encryption processing unit 170 obtains a predetermined server-side public key from the public certificate. The secret key is encrypted (2515) and the secret key is encrypted using the server-side public key (2520).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

When the payment approval request expert is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 encrypts the secret with the payment approval request message and the server-side public key encrypted with the secret key. Generate and provide transaction data associated with a key to the communication processing unit 140 (2525), the communication processing unit 140 provides the transaction data through the network component on the telephone network and / or VoIP network the merchant server 200 In operation 2530.

Thereafter, the merchant server 200 receives the payment approval request text and decrypts the electronic envelope method, adds (or inserts) and / or replaces predetermined payment information in the decrypted payment approval request text, The payment approval request message is transmitted to the payment server 300 corresponding to the payment means information included in the payment approval request message, thereby performing a payment processing procedure through the payment approval request message.

26A and 26B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 26a and Figure 26b is an embodiment of the method for encrypting and transmitting the full payment approval request by the key exchange method in the call terminal 100 with the encryption function as shown in Figure 19, the invention belongs If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or the VoIP network by referring to and / or modifying the drawing 26 are described. It may be inferred, but the present invention encompasses all of the inferred implementation methods and is not limited to the implementation method illustrated in FIG.

In this figure 26 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read from the authorized certificate provided in the call terminal 100, and the authorized certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100. The invention is not limited.

Referring to FIGS. 26A and 26B, when a predetermined payment approval request message is generated by the full text generation unit 180 of the call terminal 100, the predetermined text approval request message is provided to the cryptographic processing unit 170 (2600). When the requesting expert is provided, the encryption processing unit 170 may transmit a message digest including a predetermined one-way hash function (for example, a hash code of a predetermined length regardless of the length of the payment approval request message). A one-way hash function that cannot generate (Message Digest) and identify (or infer) the original message through the hash code (or message digest) The call terminal 100 and the merchant server 200. Uses the same hash function) to generate a predetermined message digest (2605) and digitally sign the message digest by encrypting the message digest with the terminal-side private key (2610).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the terminal-side private key is t1 (30erminal side key), the message digest is m (message digest), and the terminal-side private key encrypted If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the message digest through the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a predetermined random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (2615), and the payment approval request The message digest encrypted with the full message and the terminal-side private key and a copy of a certificate (eg, a certificate including the terminal-side public key) included in the public certificate are linked to each other and encrypted through the generated secret key (2620).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the full payment authorization request and the copy of the certificate P (Plaintext), and encrypted payment with the secret key If the full text of the approval request and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Er (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request full text and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( It is preferable to include at least one or more of the International Data Encryption Algorithm, and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts a predetermined server-side public key from the authorized certificate in order to encrypt the secret key that encrypts the full payment approval request message (2625), and uses the server-side public key. The secret key encrypting the full payment approval request is encrypted (2630).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

A copy of the certificate including the message digest encrypted with the full payment approval request message and the terminal-side private key and the terminal-side public key are linked and encrypted with the generated secret key, and the secret key is encrypted with the server-side public key. If encrypted, the encryption processing unit 170 encrypts a copy of a certificate including the message digest encrypted with the secret key and the terminal side private key encrypted with the secret key with the server side public key. Generate predetermined transaction data in association with the secret key, and provide the generated transaction data to the communication processor 140 (2635), and the communication processor 140 transmits the transaction data to a telephone network and / or a VoIP network. The network component is transmitted to the affiliated store server 200 through a network component in operation 2640.

Thereafter, the affiliate server 200 receives the payment approval request text and decrypts the key exchange method, and adds (or inserts) and / or replaces predetermined payment information in the decrypted payment approval request text. The payment approval request message is transmitted to the payment server 300 corresponding to the payment means information included in the payment approval request message, thereby performing a payment processing procedure through the payment approval request message.

27A and 27B illustrate a method of operating the call terminal 100 for payment processing according to another exemplary embodiment of the present invention.

In more detail, FIGS. 27A and 27B illustrate that the call terminal 100 illustrated in FIG. 19 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a predetermined product, and through the call channel. In the process of performing the order and purchase process of the product through the card reader provided in the call terminal 100 reads predetermined payment means information and generates a predetermined payment approval request message to correspond to the telephone network and / or VoIP network By providing to the merchant server 200 through a data channel to the merchant server 200 for the operation method of the call terminal 100 to perform the payment processing for the purchase product through the payment approval request full text As a method of implementation, those skilled in the art to which the present invention pertains may refer to and / or modify the present drawings 27a and 27b to provide a predetermined car in the call terminal 100. It is possible to infer various implementation methods for performing payment processing on the purchased goods by reading predetermined payment means information through a bidder and generating a predetermined payment approval request message and transmitting the same to the affiliated store server 200. The present invention includes all the inferred implementation methods, and is not limited by the implementation methods shown in FIGS. 27A and 27B.

For example, in FIGS. 27A and 27B, the terminal performs an encryption procedure for predetermined payment means information read from the customer-owned card. The encryption procedure provides a high level of security for the payment means information. It is to be carried out in order to meet, and may be omitted according to the intention of those skilled in the art, thereby not limiting the present invention.

Hereinafter, in the present drawings 27a and 27b, the call terminal 100 having the card reader shown in FIG. 19 is referred to as a "terminal" for convenience, and the affiliated store server 200 is referred to as a "server" for convenience.

27A and 27B, a terminal conforming to the functional configuration shown in FIG. 19 may include at least one or more telephone networks (e.g., a general switched telephone network (or intelligent network), and / or a mobile communication network) and / or a VoIP network (e.g., Connect a predetermined communication channel with the server via TCP / IP (and / or UDP / IP) based wired communication network, IEEE 802.16x based portable Internet (2700), and order the goods provided by the server through the communication channel. According to the procedure, a procedure of selecting, ordering, and purchasing at least one or more purchased products is performed (2705).

If the person skilled in the art to which the present invention pertains, the terminal connects a predetermined communication channel with the server, and performs a predetermined product ordering procedure (eg, ARS and / or agent connection through the communication channel). Key tones based on the product ordering procedure), so the detailed process for this will be omitted for convenience.

During the product ordering process as described above, the terminal checks whether the predetermined payment approval request text message is requested from the merchant server 200 through a data channel corresponding to at least one or more telephone networks and / or VoIP networks ( 2710, if a predetermined payment approval request message is requested from the server (2715), the terminal switches the operation mode to the payment processing mode using the data channel (2720), and the card reader provided in the terminal Through the screen output means provided in the terminal to read predetermined payment means information from the customer-owned card through, and / or through the audio output means provided in the terminal (2725).

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (2730). When predetermined payment means information is read from the terminal 2735, the terminal generates a payment approval request message including the read payment means information and at least one blank information (2740), and encrypts the payment approval request message. Perform the procedure (2745).

Thereafter, when the payment approval request message is encrypted (2750), the terminal transmits the encrypted payment approval request message to the server through a data channel set in the telephone network and / or the VoIP network (2755).

Thereafter, the terminal performs a predetermined payment processing procedure through the payment approval request message, and then the payment corresponding to the payment approval request message from the server through a data channel set in the telephone network and / or the VoIP network. In operation 2760, if the payment approval text corresponding to the payment approval request text is received (2765), the terminal reads the received payment approval text to correspond to the payment approval request text. Check whether the payment processing is approved (2770).

If the payment processing corresponding to the full payment approval request is approved (2775), the terminal performs the order procedure after the payment processing approval (2780), by ordering goods using the call terminal 100 according to the present invention and Finalize the purchase and payment process.

28 is a diagram showing the functional configuration of the call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 28 illustrates a predetermined process for payment processing for the purchased product in a predetermined merchant server 200 performing the order and product purchase process in a telephone order and product purchase process using a predetermined voice call. When the predetermined payment information is provided to the call terminal 100 having a card reader, the call terminal 100 reads predetermined payment means information from a predetermined customer-owned card through the card reader, and reads the read payment. One embodiment of a method for configuring a call terminal 100 function for generating a predetermined payment approval request message including means information and payment information, and processing payment, and has a general knowledge in the technical field to which the present invention belongs. If so, it can be inferred from the Figure 28 and / or modified to infer the configuration of the various call terminal 100 for payment processing using the call terminal 100, Invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 28.

Referring to FIG. 28, the call terminal 100 basically communicates with the control unit 105, the memory unit, the key input unit 110, the voice processing unit 115, the screen output unit 120, and the tone processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. It converts the input and output voice signal into an electrical signal (and / or digital signal) to operate and control the voice call function to transmit and receive through the voice call channel, for this purpose, the hardware of the call terminal 100 At least one processor and execution memory (eg, registers and / or CPUs) including a central processing unit (CPU) / microprocessor unit (MPU) included in the call terminal 100 to realize functions. RAM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, characterized in that it is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140 to control a data channel defined in a telephone network (eg, an intelligent network and / or a mobile communication network) and / or a VoIP network connected to the communication processing unit 140. Connecting a predetermined data channel for data communication with at least one terminal (or server) based thereon, and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for hardware data communication. And the execution memo from a recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card, for this purpose CPU / MPU to the call terminal 100 for payment processing by using the call terminal 100 in hardware Characterized in that it comprises a bus (BUS) for inputting and outputting at least one processor and execution memory and predetermined data, including the; and the call terminal 100 for payment processing using the call terminal 100 by software A program routine and / or program data which are loaded into the execution memory from the recording medium provided in the package) and arithmeticly processed by the processor. It is characterized by.

In addition, the control unit 105 controls the predetermined security application module 145 provided in the call terminal 100 for payment processing using the call terminal 100, through the card reader unit 125. Generate a predetermined text based on the predetermined payment means information from the customer-owned card, and operates and controls the transmission of the full text to the server through the communication processing unit 140, for this purpose At least one processor including a CPU / MPU and the execution memory and a bus (BUS) for inputting and outputting predetermined data in the call terminal 100 for payment processing using the call terminal 100 The software is loaded into the execution memory from a recording medium provided in the call terminal 100 for payment processing using the call terminal 100. Program routines and / or program data processed by the processor are collectively characterized.

Accordingly, the call terminal 100 shown in FIG. 28 is loaded into the execution memory from the recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit inputs or outputs information or data when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term of non-volatile memory for storage of at least one, including at least one storage means including EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. And a predetermined program routine required for the control unit 105 to perform a predetermined control function and program data (for example, data input or output for the program routine to perform a predetermined function). It is characterized by.

According to an embodiment of the present invention, the memory unit preferably stores at least one or more encryption keys for payment processing using the call terminal 100.

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then corresponds to the key data. And performing an information processing procedure, and / or acquiring an instruction to execute a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or intelligent network). It is preferable to generate the voice data by encoding by using a coding scheme that can be transmitted through).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding the encoding scheme corresponding to the stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to the exemplary embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by the predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115, at which time the voice processor 115 is used. Decodes the voice data by a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal (or Electrical signal) is output through a predetermined voice output device (eg, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 is provided with a predetermined vocoder and a codec. desirable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the speech signal (or electrical signal) by decoding by encoding scheme corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable that the above specification is included.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is an LCD (Liquid Crystal Display) by the control unit 105 while the call terminal 100 performs a voice call function and / or a payment processing function using the call terminal 100. And / or at least one or more information or data which is predefined or defined in real time to be output to a predetermined display device including a Cathode Ray Tube (CRT) and / or a CRT (Cathode Ray Tube). The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

The predefined information or data to be output from the call terminal 100 to the screen output device includes key data input through the key input unit 110 and / or components provided in the call terminal 100. Information (or data) stored or generated by the information, information (or data) transmitted / received through the communication processing unit 140, and / or (or data) corresponding to a predetermined operation result performed by the call terminal 100. It comprises at least one or more.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that provided to the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 is connected to a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the speech data by encoding by a coding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is connected to a general telephone switching network). (Or a network configuration connecting the switch and the wired communication section provided on the intelligent network), and performs a call processing procedure corresponding to the communication protocol standard defined in the general telephone switching network (or intelligent network). It is preferable to connect the voice call channel with at least one other call terminal 100 (or server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack) by performing a call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is desirable to connect the voice call channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects wired communication segments through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processing unit 140 transmits and receives voice data encoded with at least one or more other call terminals 100 (or servers) encoded in a coding scheme corresponding to the telephone network and / or the VoIP network through the voice call channel. It features.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. And add (or assign) and perform data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the added (or assigned) data channel.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the communication processing unit 140 uses a predetermined data channel defined in the general telephone switching network (or an intelligent network). In addition to (or assigning) to the voice call channel, it is preferable to perform predetermined data communication in addition to the voice call with at least one other call terminal 100 (or a server) to which the call channel is connected through the data channel. .

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one other call terminal 100 (or server) connected with the call channel through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that the predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data communication standard defined in the general telephone switching network (or intelligent network). According to the present invention, it is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server), and predetermined data communication with at least one terminal (or server) through the data channel (or communication channel). Do this.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and performs a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / IEC Have (or own) a contact IC card (or wireless IC chip) based on the 7816 standard and / or at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one track (for example, track II area) provided in the MS of the MS card by using the loading.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It comprises a, and supplies power to the IC chip of the IC card through the contact point, a predetermined payment means from the IC chip through the half-duplex transaction using an APDU (Application Protocol Data Unit) It is characterized by interfacing the information to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit uses at least an electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and calls the predetermined payment means information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security application module 145 for managing the function to generate and transmit to the server via the telephone network and / or VoIP network, and receives and processes the payment approval message corresponding to the payment approval request message from the server (Secure Application) And a Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication required by the call terminal 100 in the process of performing the electronic payment and / or electronic payment using the card. Security requirements, including integrity and / or nonrepudiation, etc., within the call terminal 100 without using an authentication server (or payment server 300) on a payment network. As a safety device for performing a reliable and reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). ) Encrypts or decrypts, adds an authenticator that prevents forgery (or tampering) of the message, or provides important information in the process of performing the security request function. It characterized in that it performs the function of Chapter.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) with performance of 2 MIPS (Million Instructions Per Second) or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the call terminal 100 to perform a predetermined security request function ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, privilege acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / delete / discard / initialization / Reprocessing / cancellation command).

Referring to FIG. 28, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. An information reading unit 195 for reading the means information, and an information receiving unit 195 for receiving, through the communication processing unit 140, professional creation information including merchant information, at least one product information, and payment amount information from the server. ), A full text generation unit 180 for generating a predetermined payment approval request full text including the payment means information and the text generation information, a full text transmission unit 185 for transmitting the full text of the payment approval to the server, and Communication processing unit 140 Receiving a payment authorization specialized corresponding to the payment approval request through a professional, and characterized in that formed by having a specialized processing unit 190 for performing an information processing procedure corresponding to the payment authorization professional.

In addition, the call terminal 100 is characterized in that it further comprises a cryptographic processing unit 170 for encrypting in a predetermined encryption method in order to prevent the wiretap and / or eavesdropping and / or hacking the full payment approval request. .

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call / data communication mode, the mode checking unit 155 may use a data channel added to (or assigned to) the voice call channel for data communication. Mode or a data communication mode for payment processing according to the present invention.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the operation result of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is the data channel added (or assigned) to the call channel; It is preferable to receive the professional creation information including merchant information and at least one item information and payment amount information transmitted from the server.

In addition, when the operation mode of the call terminal 100 is a data communication mode, the mode checking unit 155 is whether the data communication mode is a simple data communication mode or a data communication mode for payment processing according to the present invention. It is characterized by checking.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the operation result of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is at least one of the merchant information transmitted from the server through the data channel. It is preferable to receive the professional generation information including the above product information and payment amount information.

The information receiving unit 195 may receive professional generation information including affiliate store information, at least one product information, and payment amount information through a data channel connected to the server. It is possible to further receive at least one or more other professional creation information, such as a document serial number to be included in the payment approval request text generated by the 180 (when the document serial number is generated by the full text generation unit 180). The present invention is not limited thereto.

According to the exemplary embodiment of the present invention, the information receiving unit 195 preferably outputs at least one product information and payment amount information included in the professional generation information through the screen output unit 120.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read by the information reader 160 through the card reader 125 includes at least one or more number arrays, such as a 16-digit card number and / or expiration date. It is preferable to make it.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is a 16-digit account number and / or branch number It is preferable to include at least one or more number arrangements, such as.

The full text generation unit 180 sums the payment means information read through the information reader 160, the merchant information received through the information receiver 195, and the total payment amount information including at least one payment amount information. It characterized in that for generating a predetermined payment approval request full text corresponding to the payment means information.

When the payment means information read out through the information reader 160 corresponds to credit card payment means information according to an embodiment of the present invention, the full text generation unit 180 includes the credit card payment means information. It is preferable to generate a credit card payment approval request full text, and information other than the payment means information is preferably added (or replaced) in the server.

In addition, when the payment means information read out through the information reader 160 corresponds to the check card payment means information, the full text generation unit 180 is the check card payment means information, merchant information and the total payment amount information It is preferable to generate a check card payment approval request full text including information, and information other than the payment means information is preferably added (or replaced) in the server.

In addition, when the payment means information read through the information reading unit 160 corresponds to the debit card payment means information, the full text generation unit 180 is the debit card payment means information, merchant information and the total payment amount information It is preferable to generate a debit card payment approval request message including the text, and information other than the payment means information is preferably added (or replaced) in the server.

In addition, when the payment means information read through the information reading unit 160 corresponds to the prepaid card payment means information, the full text generation unit 180 is the prepaid card payment means information, merchant information and the total payment amount information It is preferable to generate a prepaid card payment approval request message including the full text, and information other than the payment means information is preferably added (or replaced) in the server.

In addition, when the payment means information read through the information reading unit 160 corresponds to the account transfer payment means information, the full text generation unit 180 is the account transfer payment means information and merchant information (eg, merchant bank account) Information) and total payment amount information (eg, wire transfer amount information).

The specialized transmission unit 185 transmits the payment approval request telegram generated by the professional generation unit 180 to the server through the data channel using the communication processing unit 140. The server transmits the payment approval request message to a payment server 300 corresponding to the payment means information included in the payment approval request message through a predetermined payment network, and the payment server 300 is connected to the payment approval request message. After performing a corresponding predetermined payment processing procedure, a predetermined payment approval text including a payment processing history corresponding to the payment processing procedure is generated and transmitted to the server, and the server transmits the payment approval text to the call terminal. Send to 100.

According to an embodiment of the present invention, the server transmits the full payment approval request message to a payment server 300 corresponding to the payment means information included in the full payment approval request message through a predetermined payment network. If the information (or information that may cause an error in performing the payment processing) exists in the full text of the payment approval request in the full text generation unit 180 of 100, the information is added to the full text of the payment approval request. (Or replacement).

Meanwhile, in transmitting the full text of the payment approval request to the server, the full text of the payment approval request may be exposed to eavesdropping and / or interception and / or hacking. To prevent this, the cryptographic processing unit 170 may allow the payment approval. And encrypting the entire request message in a predetermined encryption scheme, wherein the encrypted payment means information is decrypted by the server in a predetermined decryption scheme corresponding to the encryption scheme.

According to an embodiment of the present invention, the encryption method may include at least one of a symmetric key (or secret key) encryption method, a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. It is preferable to include the present invention, and other encryption methods other than the above encryption method may be used according to the intention of those skilled in the art, and the present invention is not limited thereby.

In addition, the encryption key 170 for encrypting the full text of the payment approval request is provided in the security application module 145, and / or may be stored on the memory unit, thereby the present invention This is not limited.

The specialized processing unit 190 receives a payment approval message including the payment processing details corresponding to the payment approval request message from the server (and / or payment server 300) through the communication processing unit 140, The payment processing details may be extracted from the payment approval text and output through the screen output unit 120.

29 is a diagram illustrating an appearance of a call terminal 100 equipped with at least one card reader according to another embodiment of the present invention.

More specifically, Fig. 29 shows the appearance of a call terminal 100 with a predetermined contact IC card reader and an MS card reader in the call terminal 100 shown in Fig. 28. Those skilled in the art will be able to infer various implementation methods in which at least one or more card readers are provided in the call terminal 100 by referring to and / or modifying the drawing 29. It includes all the inferred implementation method, and is not limited to the implementation method shown in FIG.

In FIG. 29, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 29, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 29, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

30 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another exemplary embodiment of the present invention.

More specifically, Figure 30 is an embodiment of the MS card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 28, for convenience The MS card shown in FIG. 30 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 30 to display credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III Would be able to infer a variety of exemplary ways to store having available) in field region, the present invention includes all embodiments in which the inference method, not limited to the exemplary method illustrated in the figure 30.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 30, payment means information providing a payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

31 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, FIG. 31 illustrates an embodiment of an IC card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 illustrated in FIG. 28. FIG. 31 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact type IC card. Those skilled in the art to which the present invention pertains may refer to and / or modify the present invention. Credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information in the memory of the IC card. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU A processor unit including at least one computing element including a micro process unit and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), and an electrically erasable and programmable read (EPPROM). It consists of a memory unit consisting of at least one or more memory elements, including only memory (FM), flash memory (FM), and the like. Chip operating system (Chip Operating System; COS) is stored, when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface COS stored in the memory unit is loaded into a predetermined execution memory The IC chip and the call terminal 100 are controlled through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip terminates at least one or more programs among programs that are loaded in the card terminal and is already driven, and drives a specific program among a plurality of programs stored in the card terminal, or the card. And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (eg Java for Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit. Read a command provided from the terminal program via an input / output interface, and read or write at least one or more information or data stored in the data unit based on the read command, and as a result or read information or data It is characterized in that to provide to the terminal program via the input and output interface through the APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferably stored in the excluded region.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 31 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

32 is a diagram for a method of encrypting and transmitting a transmission approval request text in a symmetric key (or secret key) method in a call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, FIG. 32 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in a symmetric key (or secret key) method in a call terminal 100 having an encryption function as shown in FIG. 28. If there is a general knowledge in the art, the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network by referring to and / or modifying the present Figure 32 symmetric key (or secret key) It will be possible to infer various implementation methods of encryption in a manner, but the present invention includes all the implementation methods inferred above and is not limited to the implementation method shown in FIG.

In this figure 32 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read out from the official certificate provided in the call terminal 100, the official certificate to the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or from the merchant server 200 to the call terminal ( It may be included in the interface screen provided to 100, and / or embedded in the communication program to communicate with the affiliated store server 200 on the call terminal 100, thereby the anti-invention is not limited.

Referring to FIG. 32, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined payment approval request text is provided to the cryptographic processing unit 170 (3200), and the payment approval request expert is provided. When the encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting a payment approval request message from an official certificate provided in the call terminal 100 (3205), the read symmetric key (Or a secret key) encrypts the full text of the payment approval request (3210).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the symmetric key (or secret key) is k (key), the full payment approval request is P (Plaintext), and the symmetric key (or If the full payment approval request encrypted with a secret key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by a formula such as "Ek (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack It is preferable to include at least one or more of an International Data Encryption Algorithm (IDEA), and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment approval request expert is encrypted through the symmetric key (or the secret key) as described above, the communication processing unit 140 transmits the encrypted payment approval request message through the communication protocol defined on the telephone network and / or the VoIP network. The transmission is performed to the affiliate server 200 (3215).

Thereafter, the affiliated server 200 receives the payment approval request text and decrypts it using the symmetric key (or secret key) method, and the decrypted payment approval request text is included in the payment means information included in the payment approval request text. By transmitting to the corresponding payment server 300, a payment processing procedure through the full payment approval request is performed.

FIG. 33 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 33 is an embodiment of the present invention, which encrypts and transmits the payment approval request message in a public key infrastructure structure in a call terminal 100 having an encryption function as shown in FIG. 28. If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network by referring to and / or modifying this drawing 33 It may be inferred, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 33 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 33, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (3300). If provided, the encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment approval request full text from the authorized certificate (3305), and the payment approval request full text through the extracted server-side public key. It is encrypted (3310).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the payment approval request full text P (Plaintext), and the server-side public key encrypted payment When the full text of the approval request is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). ), DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH is preferably included at least one or more, in addition to various encryption algorithms may be used, but by a specific encryption algorithm The present invention is not limited.

For example, in the case of encrypting the full payment approval request message through the RSA encryption algorithm among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by the different prime factors of n is a. And b, e is the published index (e.g. 3 or 216+) and e is the undisclosed index d, where n satisfies "n = a * b" and d is "de = 1 mod ( a-1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment approval request expert is encrypted through the server-side public key as described above, the communication processing unit 140 transmits the encrypted payment approval request message to the merchant server 200 through a network component on the telephone network and / or the VoIP network. Transmit (3315).

Thereafter, the affiliated server 200 receives the payment approval request text and decrypts it using the public key method, and the payment server corresponding to the payment means information included in the payment approval request text and the decrypted payment approval request text ( 300 to perform a payment processing procedure through the full payment approval request.

34 is a diagram illustrating a method of encrypting and transmitting a transmission approval request text in an electronic envelope method in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 34 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in an electronic envelope method in the call terminal 100 having an encryption function as shown in FIG. 28, in the technical field to which the present invention pertains. With ordinary knowledge, it is inferred from various embodiments of the present invention that various encryption methods for encrypting the payment approval request text in an electronic envelope method in the call terminal 100 on the telephone network and / or the VoIP network by referring to and / or modifying the drawing 34. It should be noted that the present invention encompasses all of the inferred implementation methods and is not limited to the implementation method shown in FIG.

In this figure 34 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 34, when a predetermined payment approval request text is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (3400), and the payment approval request expert is provided. The encryption processing unit 170 generates a random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (3405), and generates the secret. The payment approval request text is encrypted using a key (3410).

Here, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the payment approval request full text P (Plaintext), and the payment approval request encrypted with the secret key When the full text is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data). It is preferable to include at least one or more of the Encryption Algorithm, and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the full payment approval request message. For this purpose, the encryption processing unit 170 obtains a predetermined server-side public key from the public certificate. The private key is extracted (3415) and the private key is encrypted using the server-side public key (3420).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

When the payment approval request expert is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 encrypts the secret with the payment approval request message and the server-side public key encrypted with the secret key. A transaction data associated with a key is generated and provided to the communication processor 140 (3425), and the communication processor 140 provides the transaction data to the affiliate server 200 through a network component on a telephone network and / or a VoIP network. In operation 3430.

Thereafter, the merchant server 200 receives the payment approval request text and decodes the electronic envelope method, and the payment server corresponding to the payment means information included in the payment approval request text decoded in the payment approval request text ( 300 to perform a payment processing procedure through the full payment approval request.

35A and 35B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 35a and Figure 35b is a method for encrypting and transmitting the full payment approval request in a key exchange method in the call terminal 100 with the encryption function as shown in Figure 28, the present invention If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network by referring to and / or modifying the drawing 35. It may be inferred, but the present invention includes all the inferred implementation method, and is not limited to the implementation method shown in FIG.

In the figure 35 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read out from the official certificate provided in the call terminal 100, and the public certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100. The invention is not limited.

Referring to FIGS. 35A and 35B, when the full text generation request unit 180 of the call terminal 100 generates a predetermined payment approval request text, it is provided to the encryption processing unit 170 (3500). When the requesting expert is provided, the encryption processing unit 170 may transmit a message die including a predetermined one-way hash function (eg, a hash code of a predetermined length regardless of the length of the payment approval request message). A one-way hash function that generates a message digest and cannot identify (or infer) the original message through the hash code (or message digest) .The call terminal 100 and the merchant server ( 200 uses the same hash function to generate a predetermined message digest (3505), and digitally signs the message digest by encrypting the message digest with the terminal-side private key (3510).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the terminal-side private key is encrypted with t1 (13erminal side key), the message digest is m (message digest), and the terminal-side private key. If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the message digest through the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm, among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a decimal number that is not disclosed by the different prime factors of n is a. b, if the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a- 1) (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a predetermined random secret key for encrypting the full payment approval request message in a secret key (symmetric key) manner (3515), and the payment approval request The message digest encrypted with the full message and the terminal-side private key and a copy of a certificate (eg, a certificate including the terminal-side public key) included in the public certificate are linked to each other and encrypted through the generated secret key (3520).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the full payment authorization request and the copy of the certificate P (Plaintext), and encrypted payment with the secret key If the full text of the approval request and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request full text and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA. It is preferable to include at least one or more of the International Data Encryption Algorithm, and in addition, various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts a predetermined server-side public key from the authorized certificate in order to encrypt the private key encrypting the full payment approval request message (3525), and using the server-side public key. The secret key encrypting the full payment approval request is encrypted (3530).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH, and various other encryption algorithms may be used. The invention is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

A copy of the certificate including the message digest encrypted with the full payment approval request message and the terminal-side private key and the terminal-side public key are linked and encrypted with the generated secret key, and the secret key is encrypted with the server-side public key. If encrypted, the encryption processing unit 170 encrypts a copy of a certificate including the message digest encrypted with the secret key and the terminal side private key encrypted with the secret key with the server side public key. Generate predetermined transaction data in association with the secret key, and provide the generated transaction data to the communication processor 140 (3535), and the communication processor 140 transmits the transaction data to a telephone network and / or a VoIP network. The network component is transmitted to the affiliated store server 200 through the network component in operation 3540.

Thereafter, the merchant server 200 receives the payment approval request text and decrypts the key exchange method, and the payment server corresponding to the payment means information included in the payment approval request text and the payment approval request text ( 300 to perform a payment processing procedure through the full payment approval request.

36A and 36B illustrate an operation method of the call terminal 100 for payment processing according to another exemplary embodiment of the present invention.

In more detail, FIGS. 36A and 36B show that the call terminal 100 shown in FIG. 28 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a predetermined product, and through the call channel. In the process of performing a product order and purchase procedure of the predetermined through the payment information provided by the merchant terminal 200 in the call terminal 100 and the card reader provided in the call terminal (100) By generating the full payment approval request of the to provide to the merchant server 200 through the data channel corresponding to the telephone network and / or VoIP network, the merchant server 200 to the purchase product through the full payment approval request message As an implementation method for the operation method of the call terminal 100 to perform the payment processing for, if the person skilled in the art to which the present invention belongs, this figure 36a Referring to FIG. 36b and / or modified to generate a full payment approval request text by using the payment information provided from the affiliate server 200 in the call terminal 100 and the payment means information read through the card reader, the purchase is made. Various implementation methods for performing payment processing for goods may be inferred, but the present invention includes all the implementation methods inferred above and is not limited to the implementation methods shown in FIGS. 36A and 36B.

For example, in FIGS. 36A and 36B, the terminal performs an encryption procedure for predetermined payment means information read from the customer-owned card. The encryption procedure provides a high level of security for the payment means information. It is to be carried out in order to be satisfied, it may be omitted according to the intention of those skilled in the art, whereby the present invention is not limited.

Hereinafter, in FIGs. 36A and 36B, the call terminal 100 having the card reader shown in FIG. 28 is referred to as a "terminal" for convenience, and the affiliated store server 200 is referred to as a "server" for convenience.

Referring to FIGS. 36A and 36B, a terminal complying with the functional configuration shown in FIG. 28 may include at least one or more telephone networks (e.g., a general switched telephone network (or intelligent network), and / or a mobile communication network) and / or a VoIP network (e.g., Connect a predetermined communication channel with the server through TCP / IP (and / or UDP / IP) based wired communication network (IEEE 802.16x based portable Internet) (3600), and order the goods provided by the server through the communication channel. According to the procedure, a procedure of selecting, ordering, and purchasing at least one or more purchased products is performed (3605).

Those skilled in the art to which the present invention pertains, the terminal connects the predetermined communication channel with the server, and through the communication channel through a predetermined product order procedure (eg, ARS and / or counselor connection) As you will be familiar with key tones-based product ordering procedures, the detailed process is omitted for convenience.

During the product order process as described above, the terminal from the merchant server 200 through the data channel corresponding to at least one telephone network and / or VoIP network, the merchant information and at least one product information and payment amount information In operation 3610, if the predetermined payment information is received from the server, the terminal switches the operation mode to the payment processing mode using the data channel (3620). Output through a screen output means provided in the terminal to read predetermined payment means information from the customer-owned card through a card reader provided in the terminal, and / or output through a voice output means provided in the terminal. (3625).

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (3630). When the predetermined payment means information is read from 3630, the terminal generates a predetermined payment approval request message including the read payment means information and payment information received from the server (3640).

According to an embodiment of the present invention, when the server generates a predetermined document serial number and transmits it in the payment information, the document serial number included in the full payment approval request is a document serial number included in the payment information. If the payment information does not include a predetermined serial number, the terminal generates a predetermined serial number for inclusion in the full payment approval request.

Thereafter, the terminal performs an encryption procedure for the full payment approval request message including the payment means information and the payment information (3645).

If the payment approval request message is encrypted (3650), the terminal transmits the encrypted payment approval request message to the server through a data channel established in the telephone network and / or VoIP network (3655).

Thereafter, the terminal performs a predetermined payment processing procedure through the payment approval request message, and then the payment corresponding to the payment approval request message from the server through a data channel set in the telephone network and / or the VoIP network. In operation 3660, if the payment approval message corresponding to the payment approval request message is received (3665), the terminal reads the received payment approval message to correspond to the payment approval request message. Check whether the payment process is approved (3670).

If payment processing corresponding to the full payment approval request is approved (3675), the terminal performs an order procedure after the payment processing approval (3680), by ordering goods using the call terminal 100 according to the present invention and Finalize the purchase and payment process.

37 is a diagram showing the functional configuration of the call terminal 100 according to another embodiment of the present invention.

In more detail, FIG. 37 illustrates a predetermined card for payment processing of the purchased product in a predetermined merchant server 200 performing the order and product purchase process in a telephone order and product purchase process using a predetermined voice call. When the predetermined payment information is provided to the call terminal 100 having a reader, the call terminal 100 reads predetermined payment means information from a predetermined customer-owned card through the card reader, and reads the read payment means. As an example of a method of configuring a function of a call terminal 100 that generates a predetermined payment approval request message including information and payment information, and processes payment, a person having ordinary knowledge in the technical field to which the present invention belongs. By referring to and / or modifying the drawing 37, it is possible to infer various configuration of the call terminal 100 for payment processing using the call terminal 100, Invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 37.

Referring to FIG. 37, the call terminal 100 basically communicates with the control unit 105, the memory unit, the key input unit 110, the voice processing unit 115, the screen output unit 120, and the tone processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. It converts the input and output voice signal into an electrical signal (and / or digital signal) to operate and control the voice call function to transmit and receive through the voice call channel, for this purpose, the hardware of the call terminal 100 At least one processor and execution memory (eg, registers and / or CPUs) including a Central Processing Unit (CPU) / MPU (Micro Processing Unit) included in the call terminal 100 to realize a function. RAM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, characterized in that it is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140 to control a data channel defined in a telephone network (eg, an intelligent network and / or a mobile communication network) and / or a VoIP network connected to the communication processing unit 140. Connecting a predetermined data channel for data communication with at least one terminal (or server) based thereon, and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for hardware data communication. And the execution memo from a recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card, for this purpose CPU / MPU to the call terminal 100 for payment processing by using the call terminal 100 in hardware Characterized in that it comprises a bus (BUS) for inputting and outputting at least one processor and execution memory and predetermined data, including the; and the call terminal 100 for payment processing using the call terminal 100 by software Program routine and / or program data which are loaded into the execution memory from the recording medium included in The features.

In addition, the control unit 105 controls the predetermined security application module 145 provided in the call terminal 100 for payment processing using the call terminal 100, through the card reader unit 125. Generate a predetermined text based on the predetermined payment means information from the customer-owned card, and operates and controls the transmission of the full text to the payment server 300 through the communication processing unit 140, Including at least one processor including a CPU / MPU, an execution memory, and input / output data to the call terminal 100 for payment processing using the call terminal 100 in hardware. And a recording medium provided to the call terminal 100 to the execution memory for payment processing using the call terminal 100 by software. Program routines and / or program data processed by the processor.

Accordingly, the call terminal 100 shown in FIG. 37 is loaded into the execution memory from the recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit inputs or outputs information or data when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term of non-volatile memory for storage of at least one, including at least one storage means including EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. And a predetermined program routine required for the control unit 105 to perform a predetermined control function and program data (for example, data input or output for the program routine to perform a predetermined function). It is characterized by.

According to an embodiment of the present invention, the memory unit corresponds to at least one payment means for each card issuer (eg, card company, financial company) and payment means for each card issuer for payment processing using the call terminal 100. Preferably, the payment server 300 is linked to the address information and stored therein, whereby a predetermined payment approval request message for the payment processing using the call terminal 100 is generated in the call terminal 100. The payment server 300 to transmit the full payment approval request is confirmed.

In addition, the memory unit preferably stores at least one or more encryption keys for payment processing using the call terminal 100.

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then information corresponding to the key data. And performing a processing procedure, and / or acquiring an instruction for executing a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or intelligent network). It is preferable to generate the voice data by encoding by using a coding scheme that can be transmitted through).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding in a coding scheme corresponding to the stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to the exemplary embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by the predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115, at which time the voice processor 115 is used. Decodes the voice data by a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal (or Electrical signal) is output through a predetermined voice output device (for example, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 is provided with a predetermined vocoder and a codec. It is preferable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the speech signal (or electrical signal) by decoding by encoding scheme corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable that the above specification is included.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is an LCD (Liquid Crystal Display) by the control unit 105 while the call terminal 100 performs a voice call function and / or a payment processing function using the call terminal 100. And / or at least one or more information or data which is predefined or defined in real time to be output to a predetermined display device including a Cathode Ray Tube (CRT) and / or a CRT (Cathode Ray Tube). The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

The predefined information or data to be output from the call terminal 100 to the screen output device includes key data input through the key input unit 110 and / or components provided in the call terminal 100. Information (or data) stored or generated by the information, information (or data) transmitted / received through the communication processing unit 140, and / or (or data) corresponding to a predetermined operation result performed by the call terminal 100. It comprises at least one.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that provided to the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the voice data by encoding with an encoding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is connected to a general telephone switching network). (Or a network configuration connecting the switch and the wired communication section provided on the intelligent network), by performing a call processing procedure corresponding to the communication protocol standard defined in the general telephone switching network (or intelligent network) It is preferable to connect a voice call channel with at least one or more other call terminals 100 (or servers).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack) by performing a call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is desirable to connect the voice call channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects wired communication segments through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processor 140 transmits and receives voice data encoded with at least one other communication terminal 100 (or server) encoded in a coding scheme corresponding to the telephone network and / or VoIP network through the voice communication channel. It is characterized by.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. It is characterized in that the addition (or allocation), and performs the data communication with at least one or more other call terminal 100 (or server) connected to the call channel through the added (or assigned) data channel.

* When the communication processing unit 140 is connected to a general telephone switching network (or intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data channel defined in the general telephone switching network (or intelligent network). Add (or assign) to the voice call channel, and perform predetermined data communication with the at least one other call terminal 100 (or server) connected to the call channel through the data channel in addition to the voice call. Do.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one other call terminal 100 (or server) connected with the call channel through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one other call terminal 100 (or a server) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that the predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data communication standard defined in the general telephone switching network (or intelligent network). According to the present invention, it is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server), and predetermined data communication with at least one terminal (or server) through the data channel (or communication channel). Do this.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and performs data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / IEC Have (or own) a contact IC card (or wireless IC chip) based on the 7816 standard and / or at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one track (for example, track II area) provided in the MS of the MS card by using the loading.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and the predetermined payment means information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit) It is characterized in that the interface to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit uses at least an electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and calls the predetermined payment means information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security for managing the function of generating and transmitting to the payment server 300 through the telephone network and / or VoIP network, and receives and processes the payment approval text corresponding to the payment approval request message from the payment server 300 It is characterized in that the application module 145 comprises a Secure Application Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication required by the call terminal 100 in the process of performing the electronic payment and / or electronic payment using the card. And / or security requirements, including integrity and / or nonrepudiation, can be secured within the call terminal 100 without using an authentication server (or payment server 300) on the network. As a safety device for performing in a reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). Encrypt or decrypt, add an authenticator to prevent forgery (or tampering) of the message, or store important information in the process of performing the security request function. It is characterized in that it performs a function.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) with performance of 2 MIPS (Million Instructions Per Second) or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the call terminal 100 to perform a predetermined security request function ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, privilege acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / delete / discard / initialization / Reprocessing / cancellation command).

Referring to FIG. 37, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. Receiving specialized information including the merchant information, at least one product information and payment amount information from the merchant server 200 through the information reading unit 160 for reading the means information and the communication processing unit 140 An information receiving unit 195, a specialty generation unit 180 for generating a predetermined payment approval request text including the payment means information and the text generation information, and a full text for transmitting the payment approval message to the payment server 300. The transmission unit 185, and Receiving a payment authorization specialized corresponding to the payment authorization request professional via the communication processing unit 140, and is characterized in that obtained by having a specialized processing unit 190 for performing an information processing procedure corresponding to the payment authorization professional.

In addition, the call terminal 100 is characterized in that it further comprises a cryptographic processing unit 170 for encrypting in a predetermined encryption method in order to prevent the wiretap and / or eavesdropping and / or hacking the full payment approval request. .

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call / data communication mode, the mode checking unit 155 may use a data channel added to (or assigned to) the voice call channel for data communication. Mode or a data communication mode for payment processing according to the present invention.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the operation result of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is the data channel added (or assigned) to the call channel; It is preferable to receive professional creation information including affiliated store information transmitted from the affiliated store server 200 and at least one product information and payment amount information.

In addition, when the operation mode of the call terminal 100 is a data communication mode, the mode checking unit 155 is whether the data communication mode is a simple data communication mode or a data communication mode for payment processing according to the present invention. It is characterized by checking.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the check result of the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is an affiliated store transmitted from the affiliated store server 200 through the data channel It is preferable to receive the professional creation information including the information and at least one product information and payment amount information.

The information receiving unit 195 may receive professional generation information including affiliate store information, at least one product information, and payment amount information through a data channel connected to the affiliate store server 200, according to the intention of the person skilled in the art. Further, at least one or more other professional creation information, such as a document serial number to be included in the payment approval request full text generated by the full text generation unit 180 (can be omitted if the full text serial number is generated by the full text generation unit 180). It is possible to receive, whereby the present invention is not limited.

According to the exemplary embodiment of the present invention, the information receiving unit 195 preferably outputs at least one product information and payment amount information included in the professional creation information through the screen output unit 120.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read by the information reader 160 through the card reader 125 includes at least one or more number arrays, such as a 16-digit card number and / or expiration date. It is preferable to make it.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is 16-digit account number and / or branch It is preferable to include at least one or more number arrangements, such as numbers.

The full text generation unit 180 sums the payment means information read through the information reader 160, the merchant information received through the information receiver 195, and the total payment amount information including at least one payment amount information. It characterized in that for generating a predetermined payment approval request full text corresponding to the payment means information.

When the payment means information read through the information reader 160 corresponds to credit card payment means information according to an embodiment of the present invention, the full text generation unit 180 is the credit card payment means information and merchant information And it is preferable to create a full credit card payment approval request including the total payment amount information.

In addition, when the payment means information read out through the information reader 160 corresponds to the check card payment means information, the full text generation unit 180 is the check card payment means information, merchant information and the total payment amount information It is desirable to create a full check card payment approval request including.

In addition, when the payment means information read through the information reading unit 160 corresponds to the debit card payment means information, the full text generation unit 180 is the debit card payment means information, merchant information and the total payment amount information It is desirable to create a debit card payment approval request text containing a.

In addition, when the payment means information read through the information reading unit 160 corresponds to the prepaid card payment means information, the full text generation unit 180 is the prepaid card payment means information, merchant information and the total payment amount information It is desirable to create a prepaid card payment authorization request containing the full text.

In addition, when the payment means information read through the information reading unit 160 corresponds to the account transfer payment means information, the full text generation unit 180 is the account transfer payment means information and merchant information (eg, merchant bank account) Information) and total payment amount information (eg, wire transfer amount information).

The specialized transmission unit 185 transmits the payment approval request message generated by the specialized generation unit 180 through the information reading unit 160 through the telephone network and / or the VoIP network through the communication processing unit 140. Characterized in that read (or included in the payment approval request full text) to the payment server 300 corresponding to the payment means information, the payment server 300 is a predetermined payment corresponding to the payment approval request full text After performing a processing procedure, a predetermined payment approval text including a payment processing history corresponding to the payment processing procedure is generated and transmitted to the call terminal 100.

According to an embodiment of the present invention, in transmitting the full payment approval request message to the payment server 300, the full payment approval request message may be exposed to tapping and / or interception and / or hacking. The encryption processing unit 170 encrypts the payment approval request text in a predetermined encryption method, and the encrypted payment means information is a predetermined decryption method corresponding to the encryption method in the payment server 300. It is characterized by being decoded.

According to an embodiment of the present invention, the encryption method may include at least one of a symmetric key (or secret key) encryption method, a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. It is preferable to include the present invention, and other encryption methods other than the above encryption method may be used according to the intention of those skilled in the art, and the present invention is not limited thereby.

In addition, the encryption key 170 for encrypting the full text of the payment approval request is provided in the security application module 145, and / or may be stored on the memory unit, thereby the present invention This is not limited.

The professional processing unit 190 provides a payment approval message including a payment processing history corresponding to the full payment approval request message from the payment server 300 (and / or merchant server 200) through the communication processing unit 140. And receiving the payment processing details from the payment approval message and outputting the received payment details through the screen output unit 120.

38 is a diagram illustrating an appearance of a call terminal 100 equipped with at least one card reader according to another embodiment of the present invention.

In more detail, Fig. 38 shows the external appearance of the call terminal 100 provided with a predetermined contact IC card reader and an MS card reader in the call terminal 100 shown in Fig. 37. Those skilled in the art will be able to infer various implementation methods in which at least one or more card readers are provided in the call terminal 100 by referring to and / or modifying the drawing 38. It includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In FIG. 38, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 38, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 38, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

39 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, Figure 39 is an embodiment of the MS card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 37, for convenience The MS card shown in FIG. 39 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 39 to obtain credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III Would be able to infer a variety of exemplary ways to store having available) in field region, the present invention includes all embodiments in which the inference method, not limited to the exemplary method illustrated in the figure 39.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 39, the payment means information providing the payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

40 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, FIG. 40 illustrates an embodiment of an IC card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 illustrated in FIG. 37. FIG. 40 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact type IC card, and a person of ordinary skill in the art to which the present invention belongs may refer to and / or see FIG. The credit card payment means information, and / or the check card payment means information, and / or the debit card payment means information, and / or the prepaid card payment means information, and / or the direct transfer payment means information in the memory of the IC card. Various implementation methods for storage may be inferred, but the present invention includes all implementation methods inferred above and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU ( A processor unit including at least one computing element including a micro process unit, and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), an electrically erasable and programmable read only (EEPROM) And a memory unit including at least one memory element including memory, flash memory (FM), and the like, in particular, at least one of the memory elements (eg, a ROM) is a chip for managing and operating internal resources of an IC card. operating system (Chip Operating System; COS) is stored, the COS stored in the memory unit is loaded into a predetermined execution memory when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface And control the overall operation of the IC chip, and the communication terminal 100 with the IC chip through an APDU (Application Protocol Data Unit) based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal (CLK) contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip terminates at least one or more programs among programs that are loaded in the card terminal and is already driven, and drives a specific program among a plurality of programs stored in the card terminal, or the card. And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (e.g., in the case of Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit. Read a command provided from the terminal program via an input / output interface, and read or record at least one or more information or data stored in the data unit based on the read command, and as a result or read information or The data may be provided to the terminal program through the input / output interface through an APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferably stored in the excluded region.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 40 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

FIG. 41 is a diagram for a method of encrypting and transmitting a transmission approval request text in a symmetric key (or secret key) method in a call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, FIG. 41 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in a symmetric key (or secret key) method in the call terminal 100 having the encryption function as shown in FIG. 37. If there is a general knowledge in the art, refer to and / or modify this figure 41 to the symmetric key (or secret key) to the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network It is possible to infer various implementation methods of encryption in a manner, but the present invention includes all of the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this drawing 41 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the official certificate provided in the call terminal 100, the official certificate to the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or provided to the call terminal 100 from a server. It may be included in the interface screen, and / or embedded in the communication program to communicate with the payment server 300 on the call terminal 100, thereby semi-invention is not limited.

Referring to FIG. 41, when a predetermined payment approval request text is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (4100), and the payment approval request expert is provided. When the encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting a payment approval request message from an authorized certificate provided in the call terminal 100 (4105), the read symmetric key (Or a private key) encrypts the full text of the payment approval request (4110).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the symmetric key (or secret key) is k (key), the full payment approval request is P (Plaintext), and the symmetric key (or If the full payment approval request encrypted with a secret key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by a formula such as "Ek (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack It is preferable to include at least one or more of an International Data Encryption Algorithm (IDEA), and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment approval request expert is encrypted through the symmetric key (or the secret key) as described above, the communication processing unit 140 transmits the encrypted payment approval request message through the communication protocol defined on the telephone network and / or the VoIP network. It transmits to the payment server 300 (4115).

Thereafter, the payment server 300 receives the payment approval request text and decrypts it using the symmetric key (or secret key) method, and performs a payment processing procedure based on the decrypted payment approval request text.

FIG. 42 is a diagram for a method of encrypting and transmitting a payment approval request message in a public key based structure in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 42 is an embodiment of a method for encrypting and transmitting the full payment approval request message in a public key infrastructure structure in a call terminal 100 having an encryption function as shown in FIG. 37. If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or the VoIP network by referring to and / or modifying the drawing of FIG. It may be inferred, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 42 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all the IC card inserted in the IC card reader, thereby not limiting the present invention.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 42, when the preamble creation unit 180 of the call terminal 100 generates a predetermined payment approval request full text, it is provided to the cryptographic processing unit 170 (4200), and the payment approval request expert is provided. When the encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment approval request message from the authorized certificate (4205), the encryption approval request message is obtained through the extracted server-side public key. Encrypt (4210).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the payment approval request full text P (Plaintext), and the server-side public key encrypted payment When the full text of the approval request is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). ), DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH is preferably included at least one or more. The present invention is not limited.

For example, in the case of encrypting the full payment approval request message through the RSA encryption algorithm among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by the different prime factors of n is a. And b, if the published index (e.g., 3 or 216+) is e, and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a -1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment approval request expert is encrypted through the server-side public key as described above, the communication processing unit 140 transmits the encrypted payment approval request message to the payment server 300 through a network component on the telephone network and / or the VoIP network. And transmit (4215).

Thereafter, the payment server 300 receives the payment approval request text and decrypts it using the public key method, and performs a payment processing procedure based on the decrypted payment approval request text.

43 is a diagram illustrating a method for encrypting and transmitting a payment approval request message in an electronic envelope method in a call terminal 100 according to another embodiment of the present invention.

More specifically, Figure 43 is an embodiment of the method for encrypting and transmitting the payment approval request full text in an electronic envelope method in the call terminal 100 with the encryption function as shown in Figure 37, in the technical field to which the present invention belongs Those skilled in the art may refer to and / or modify this drawing 43 to infer various implementation methods for encrypting the full text of the payment approval request in an electronic envelope method in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the present invention encompasses all of the inferred practice methods and is not limited to the practice method shown in FIG.

In this figure 43 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 43, when a predetermined payment approval request text is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (4300), and the payment approval request expert is provided. The encryption processing unit 170 generates a random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (4305), and generates the secret. Using the key to encrypt the full text of the payment approval request (4310).

Here, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the payment approval request full text P (Plaintext), and the payment approval request encrypted with the secret key When the full text is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data). It is preferable to include at least one or more of the Encryption Algorithm, and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the full payment approval request message. For this purpose, the encryption processing unit 170 obtains a predetermined server-side public key from the public certificate. In operation 4320, the secret key is encrypted using the server-side public key (4320).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

When the payment approval request expert is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 encrypts the secret with the payment approval request message and the server-side public key encrypted with the secret key. Generate and provide transaction data associated with a key to the communication processor 140 (4325), and the communication processor 140 transmits the transaction data through a network component on a telephone network and / or a VoIP network. And transmit (4330).

Thereafter, the payment server 300 receives and decrypts the payment approval request text in the electronic envelope method, and performs a payment processing procedure based on the decrypted payment approval request text.

44A and 44B illustrate a method for encrypting and transmitting a payment approval request message in a key exchange method in the call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 44a and Figure 44b is an embodiment of the method for encrypting and transmitting the full payment approval request by the key exchange method in the call terminal 100 with the encryption function as shown in Figure 37, the present invention If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or the VoIP network with reference to and / or modifying the present Figure 44 It may be inferred, but the present invention encompasses all of the inferred implementation methods and is not limited to the implementation method illustrated in FIG.

In this figure 44 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read from the authorized certificate provided in the call terminal 100, and the authorized certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key can be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100, thereby. The present invention is not limited.

Referring to FIGS. 44A and 44B, when a predetermined payment approval request message is generated by the full text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (4400). When the requesting expert is provided, the encryption processing unit 170 may transmit a message digest including a predetermined one-way hash function (for example, a hash code of a predetermined length regardless of the length of the payment approval request message). A one-way hash function that generates a message digest and cannot identify (or infer) the original message through the hash code (or message digest) The call terminal 100 and the payment server 300. Generates a predetermined message digest using the same hash function (4405), and digitally signs the message digest by encrypting the message digest with the terminal-side private key (4410).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the terminal-side private key is t1 (30erminal side key), the message digest is m (message digest), and the terminal-side private key encrypted If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the message digest using the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a predetermined random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (4415), and the payment approval request The message digest encrypted with the full message and the terminal-side private key and a copy of a certificate (eg, a certificate including the terminal-side public key) included in the public certificate are linked and encrypted through the generated secret key (4420).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the full payment authorization request and the copy of the certificate P (Plaintext), and encrypted payment with the secret key If the full text of the approval request and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Er (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request full text and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( It is preferable to include at least one or more of the International Data Encryption Algorithm, and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts (4425) a predetermined server-side public key from the authorized certificate to encrypt the private key that encrypts the payment approval request message (4425), and uses the server-side public key. The secret key encrypting the full payment approval request is encrypted (4430).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

A copy of the certificate including the message digest encrypted with the full payment approval request message and the terminal-side private key and the terminal-side public key are linked and encrypted with the generated secret key, and the secret key is encrypted with the server-side public key. If encrypted, the encryption processing unit 170 encrypts a copy of a certificate including the message digest encrypted with the secret key and the terminal side private key encrypted with the secret key with the server side public key. Generate predetermined transaction data in association with the secret key, and provide the generated transaction data to the communication processor 140 (4435), and the communication processor 140 transmits the transaction data to a telephone network and / or a VoIP network. The transmission is transmitted to the payment server 300 through the network component (4440).

Thereafter, the payment server 300 receives and decrypts the payment approval request text by the key exchange method, and performs a payment processing procedure based on the decrypted payment approval request text.

45A and 45B illustrate a method of operating the call terminal 100 for payment processing according to another exemplary embodiment of the present invention.

In more detail, FIGS. 45A and 45B show that the call terminal 100 shown in FIG. 37 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a predetermined product, and through the call channel. In the process of performing a product order and purchase procedure of the predetermined through the payment information provided by the merchant terminal 200 in the call terminal 100 and the card reader provided in the call terminal (100) By generating the full payment approval request of the request to the payment server 300 through the data channel corresponding to the telephone network and / or VoIP network, the payment server 300 to the purchase product through the payment approval request message As an embodiment of the method for operating the call terminal 100 to perform the payment processing for those skilled in the art to which the present invention belongs, this figure 45a and FIG. By referring to and / or modified 45b, the call terminal 100 generates a predetermined payment approval request full text through payment information provided from the affiliate server 200 and payment means information read through the card reader. It will be able to infer various implementation methods for performing payment processing for the present invention, but the present invention includes all the inferred implementation methods and is not limited by the implementation methods shown in FIGS. 45A and 45B.

For example, in FIGS. 45A and 45B, the terminal performs an encryption procedure for predetermined payment means information read from the customer-owned card. The encryption procedure provides a high level of security for the payment means information. It is to be carried out in order to be satisfied, it may be omitted according to the intention of those skilled in the art, whereby the present invention is not limited.

Hereinafter, in the present drawings 45a and 45b, the call terminal 100 having the card reader shown in FIG. 37 is referred to as a "terminal" for convenience, and the affiliated store server 200 is referred to as a "server" for convenience.

45A and 45B, a terminal complying with the functional configuration shown in FIG. 37 may include at least one or more telephone networks (e.g., a general switched telephone network (or intelligent network), and / or a mobile communication network) and / or a VoIP network (e.g., Connect a predetermined communication channel with the server through TCP / IP (and / or UDP / IP) based wired communication network (IEEE 802.16x based portable Internet) (4500), and order the goods provided by the server through the communication channel. According to the procedure, a procedure of selecting, ordering, and purchasing at least one or more purchased products is performed (4505).

Those skilled in the art to which the present invention pertains, the terminal connects the predetermined communication channel with the server, and through the communication channel through a predetermined product order procedure (eg, ARS and / or counselor connection) As you will be familiar with key tones-based product ordering procedures, the detailed process is omitted for convenience.

During the product order process as described above, the terminal from the merchant server 200 through the data channel corresponding to at least one telephone network and / or VoIP network, the merchant information and at least one product information and payment amount information In operation 4510, if the predetermined payment information is received from the server, the terminal switches the operation mode to the payment processing mode using the data channel (4520). Output through a screen output means provided in the terminal to read predetermined payment means information from the customer-owned card through a card reader provided in the terminal, and / or output through a voice output means provided in the terminal. (4525)

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (4530). When the predetermined payment means information is read from the terminal (4535), the terminal generates a predetermined payment approval request full text including the read payment means information and the payment information received from the server (4540).

According to an embodiment of the present invention, when the server generates a predetermined document serial number and transmits it in the payment information, the document serial number included in the full payment approval request is a document serial number included in the payment information. If the payment information does not include a predetermined serial number, the terminal generates a predetermined serial number for inclusion in the full payment approval request.

Thereafter, the terminal performs an encryption procedure for the full payment approval request message including the payment means information and the payment information (4545).

* If the full payment approval request is encrypted (4550), the terminal extracts a predetermined payment server 300 network address corresponding to the payment means information from the memory unit, at least one or more based on the network address Connect a payment server 300 corresponding to the payment means information and a communication channel for transmitting and receiving the payment approval message through a telephone network and / or a VoIP network (4555), and transmit the encrypted payment approval request message through the communication channel. The payment server 300 transmits (4560).

Thereafter, the terminal performs a predetermined payment processing procedure through the payment approval request message, and then completes the payment approval request message from the payment server 300 through a data channel set in the telephone network and / or VoIP network. In operation 4565, if the payment approval message corresponding to the payment approval request message is received (4570), the terminal reads the received payment approval message to read the payment approval message. Check whether the payment processing corresponding to the full text is approved (4575).

If the payment processing corresponding to the full payment approval request is approved (4580), the terminal performs an order procedure after the payment processing approval (4585), the product orders using the call terminal 100 according to the present invention and Finalize the purchase and payment process.

46 is a diagram showing the functional configuration of the call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 46 illustrates a predetermined card for payment processing of the purchased product in a predetermined merchant server 200 performing the order and product purchase process in a telephone order and product purchase process using a predetermined voice call. When the predetermined payment information is provided to the call terminal 100 having a reader, the call terminal 100 reads predetermined payment means information from a predetermined customer-owned card through the card reader, and reads the read payment means. As an example of a method of configuring a function of a call terminal 100 that generates a predetermined payment approval request message including information and payment information, and processes payment, a person having ordinary knowledge in the technical field to which the present invention belongs. By referring to and / or modifying this drawing 46, it will be possible to infer various call terminal 100 functional configurations for payment processing using the call terminal 100, Invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 46.

Referring to FIG. 46, the call terminal 100 basically communicates with a control unit 105, a memory unit, a key input unit 110, a voice processing unit 115, a screen output unit 120, and a tone processing unit 135. It comprises a processing unit 140 and a power supply unit 130 for supplying power to the call terminal 100, the card reader unit 125 for payment processing using the call terminal 100 according to the present invention and / Or a security application module 145 or the like, and may further include at least one or more functional components (not shown) according to the intention of those skilled in the art.

The control unit 105 basically controls the key input unit 110, the voice processing unit 115, the screen output unit 120, and the communication processing unit 140 so that a predetermined telephone input through the key input unit 110 is performed. Connect a voice call channel with at least one other call terminal 100 (or server) through a telephone network and / or a VoIP network connected to the communication processor 140 based on the number, and through the voice processor 115. It converts the input and output voice signal into an electrical signal (and / or digital signal) to operate and control the voice call function to transmit and receive through the voice call channel, for this purpose, the hardware of the call terminal 100 At least one processor and execution memory (eg, registers and / or Rs) including a central processing unit (CPU) / microprocessor unit (MPU) provided in the call terminal 100 for realizing functions. It comprises a AM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, and is provided in the call terminal 100 to realize the function of the call terminal 100 by software A program routine that is loaded from a recording medium into the execution memory and is processed by the processor may be a generic term.

In addition, the control unit 105 controls the communication processing unit 140 to control a data channel defined in a telephone network (eg, an intelligent network and / or a mobile communication network) and / or a VoIP network connected to the communication processing unit 140. Connecting a predetermined data channel for data communication with at least one terminal (or server) based thereon, and operating and controlling a function of transmitting and receiving at least one digital information (or digital data) through the data channel. To this end, the communication terminal comprises at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for hardware data communication. And the execution memo from a recording medium provided in the call terminal 100 for the data communication by software. Is loaded into characterized in that the general term for calculation processing routine program and / or program data by the processor.

In addition, the control unit 105 controls the predetermined card reader unit 125 provided in the call terminal 100 for the payment processing using the call terminal 100, and through the card reader unit 125. It is characterized in that the operation and control to read the predetermined payment means information from the customer-owned card, for this purpose CPU / MPU to the call terminal 100 for payment processing by using the call terminal 100 in hardware Characterized in that it comprises a bus (BUS) for inputting and outputting at least one processor and execution memory and predetermined data, including the; and the call terminal 100 for payment processing using the call terminal 100 by software A program routine and / or program data which are loaded into the execution memory from the recording medium provided in the package) and arithmeticly processed by the processor. It is characterized by.

In addition, the control unit 105 controls the predetermined security application module 145 provided in the call terminal 100 for payment processing using the call terminal 100, through the card reader unit 125. Generating a predetermined text based on predetermined payment means information from a customer-owned card, and operating and controlling transmitting the full text to the predetermined bansa server 400 through the communication processor 140; To this end, at least one processor including a CPU / MPU, an execution memory, and a bus for inputting and outputting predetermined data to the call terminal 100 for payment processing using the call terminal 100 in hardware. And a recording medium provided to the call terminal 100 to the execution memory for payment processing using the call terminal 100 by software. A program routine and / or program data that are loaded and computed by the processor may be collectively referred to.

Accordingly, the call terminal 100 shown in FIG. 46 is loaded into the execution memory from the recording medium provided in the call terminal 100 for payment processing using the call terminal 100 and operated by the processor. Program routines to be processed are described in block form in the control section 105 for convenience.

The memory unit inputs or outputs information or data when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the call terminal 100 is performed. General term of non-volatile memory for storage of at least one, including at least one storage means including EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. And a predetermined program routine required for the control unit 105 to perform a predetermined control function and program data (for example, data input or output for the program routine to perform a predetermined function). It is characterized by.

According to an embodiment of the present invention, the memory unit bansa server 400 address information corresponding to a payment network to transmit the full payment approval request generated in the call terminal 100 for payment processing using the call terminal 100 Preferably, when the predetermined payment approval request message for payment processing using the call terminal 100 is generated by the call terminal 100, a predetermined bansa server to transmit the payment approval request message 400 is confirmed.

In addition, the memory unit preferably stores at least one or more encryption keys for payment processing using the call terminal 100.

The key input unit 110 includes a predetermined at least one key button including at least one numeric key and / or a character key and / or a function key. Detects information (or a signal) input from a key input device of a predetermined key and is provided to the key input device in a specific input mode and / or operation mode of the call terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from the key button, a key event corresponding to the input information (or signal) is generated and the generated key event is provided to the controller 105.

When the current input mode and / or operation mode of the call terminal 100 is a voice call mode, the controller 105 obtains predetermined key data corresponding to the key event and provides the predetermined key data to the signal sound processor 135. The tone processing unit 135 may generate a key tone corresponding to the key data according to a dual tone multifrequency (DTMF) scheme.

When the current input mode and / or operation mode of the call terminal 100 is a data communication mode, the controller 105 obtains predetermined key data corresponding to the key event, and then information corresponding to the key data. And performing a processing procedure, and / or acquiring an instruction for executing a predetermined function matched with the key event, and then performing a function corresponding to the instruction.

According to the exemplary embodiment of the present invention, the key input unit 110 and the key input device including at least one or more key buttons interoperate with each other to perform a function of key input means provided in the call terminal 100.

According to the exemplary embodiment of the present invention, the key input device interworking with the key input unit 110 may include a keypad device having at least one numeric key, a letter key ('*', '#') and a function key, and / Or at least one or more keyboard devices including at least one numeric key, character keys (eg, English character keys, and / or Korean character keys) and function keys.

The voice processing unit 115 converts a predetermined voice input from a predetermined voice input device (for example, a microphone) included in the call terminal 100 into a predetermined voice signal (or an electrical signal), and the communication processor 140 Is encoded using a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the PDP network to generate predetermined voice data, and provides the voice data to the controller 105. The processing unit 115 is preferably provided with a predetermined Vocoder and a codec.

Thereafter, the controller 105 transmits the generated voice data to the telephone network and / or the VoIP network through the communication processor 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 transmits the voice signal (or electrical signal) to the general telephone switching network (or It is preferable to generate the voice data by encoding by an encoding method that can be transmitted through an intelligent network.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 may transmit the voice signal (or electrical signal) through the mobile communication network. Division Multiple Access) It is preferable to generate the speech data by encoding in a coding scheme corresponding to the stack.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 may transmit the voice signal (or electrical signal) through the VoIP network. Preferably, the voice data is generated by encoding with a coding scheme corresponding to a stack, wherein the coding scheme corresponding to the VoIP network is an H.323 protocol standard and / or an Internet Engineering Task defined by the International Telecommunication Union (ITU). It is preferable to include at least one or more of the Session Initiation Protocol (SIP) protocol specifications defined by the Force.

According to the exemplary embodiment of the present invention, the voice processing unit 115 and the voice input device interoperate with each other to perform a function of voice input means for receiving a voice signal for voice call through the telephone network and / or the VoIP network.

When the voice data encoded by the predetermined encoding method is received through the communication processor 140, the controller 105 provides the voice data to the voice processor 115, at which time the voice processor 115 is used. Decodes the voice data by a voice encoding scheme corresponding to a telephone network and / or a VoIP network connected to the communication processor 140 to generate a predetermined voice signal (or an electrical signal), and generates the voice signal (or Electrical signal) is output through a predetermined voice output device (eg, a speaker) provided in the call terminal 100. For this purpose, the voice processing unit 115 is provided with a predetermined vocoder and a codec. desirable.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network), the voice processing unit 115 receives the voice data received through the communication processing unit 140 from the general telephone. It is preferable to generate the speech signal (or electrical signal) by decoding by encoding scheme corresponding to the switching network (or intelligent network).

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the voice processing unit 115 transmits the voice data received through the communication processing unit 140 to the CDMA corresponding to the mobile communication network. It is preferable to generate the speech signal (or electrical signal) by decoding by stack-based encoding.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the voice processing unit 115 corresponds to the VoIP network by receiving voice data received through the communication processing unit 140. It is preferable to generate the voice signal (or electrical signal) by decoding by encoding method, wherein the encoding method corresponding to the VoIP network is at least one of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable that the above specification is included.

According to an embodiment of the present invention, the voice processing unit 115 and the voice output device interoperate with each other to perform a function of voice output means for outputting a voice signal for voice call through the telephone network and / or the VoIP network.

The screen output unit 120 is an LCD (Liquid Crystal Display) by the control unit 105 while the call terminal 100 performs a voice call function and / or a payment processing function using the call terminal 100. And / or output at least one or more information or data which are predefined or defined in real time to be output to a predetermined display device including a cathode ray tube (CRT) and / or a CRT (Cathode Ray Tube). The screen output unit 120 and the screen output device interoperate with each other to perform a function of the screen output means provided in the call terminal 100.

The predefined information or data to be output from the call terminal 100 to the screen output device includes key data input through the key input unit 110 and / or components provided in the call terminal 100. Information (or data) stored or generated by the information, information (or data) transmitted / received through the communication processing unit 140, and / or (or data) corresponding to a predetermined operation result performed by the call terminal 100. It comprises at least one.

According to a preferred embodiment of the present invention, the screen output unit 120 of the screen output means for outputting the payment processing screen according to each payment processing step to the screen output device for payment processing using the call terminal 100 It is desirable to perform the function.

The tone processing unit 135 is a predetermined number key ("0 ~ 9") and / or letter key ('*) through the key input unit 110 in the state that the operation mode of the call terminal 100 is the voice call mode ',' # 'Is input, generates a key tone corresponding to the input key data in a complex frequency code (DTMF) scheme, and the key tone is connected to the telephone network and / or to which the communication processor 140 is connected. Characterized in that the voice encoding method corresponding to the VoIP network characterized in that it is provided to the communication processing unit 140.

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the voice processing unit 115 may transmit the key tone through the general telephone switching network (or intelligent network). It is preferable to generate the speech data by encoding by a coding scheme.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the voice processor 115 may transmit a code division multiple access (CDMA) stack capable of transmitting the key tone through the mobile communication network. It is preferable to generate the speech data by encoding by a coding scheme corresponding to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the voice processor 115 encodes a key corresponding to a VoIP protocol stack capable of transmitting the key tone through the VoIP network. It is preferable to generate the voice data by encoding in a scheme, wherein the encoding scheme corresponding to the VoIP network includes at least one or more of the H.323 protocol standard defined by the ITU and / or the SIP protocol standard defined by the IETF. It is preferable.

The communication processor 140 connects the call terminal 100 to a predetermined telephone network and / or a VoIP network, and at least one or more other call terminals 100 according to a call processing procedure defined in the telephone network and / or the VoIP network. (Or a server) and the voice call channel is characterized in that the connection.

According to an exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a general telephone switching network (or an intelligent network) in a physical network configuration (eg, the call terminal 100 is connected to a general telephone switching network). (Or a network configuration connecting the switch and the wired communication section provided on the intelligent network), by performing a call processing procedure corresponding to the communication protocol standard defined in the general telephone switching network (or intelligent network) It is preferable to connect the voice call channel with at least one or more other call terminals 100 (or servers).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a mobile communication network, for example, a physical network configuration (for example, the base station provided on the mobile communication network). And a network configuration for connecting a wireless communication section corresponding to the CDMA stack) by performing a call processing procedure corresponding to a communication protocol standard defined in the mobile communication network. It is desirable to connect the voice call channel with the server (or the server).

According to another exemplary embodiment of the present invention, the communication processing unit 140 connects the call terminal 100 to a VoIP network in a physical network configuration (for example, the VoIP terminal 100 is provided on the VoIP network). Network configuration that connects wired communication segments through the Gateway and / or VoIP Gatekeeper and the Real-time Transport Protocol / RTP Control Protocol (RTP / RTCP) protocol layer implemented on top of the UDP / IP protocol stack. It is preferable to include a, it is preferable to connect the voice call channel with at least one or more other call terminal 100 (or server) by performing a call processing procedure corresponding to the communication protocol standard defined in the VoIP.

In addition, the communication processing unit 140 transmits and receives voice data encoded with at least one or more other call terminals 100 (or servers) encoded in a coding scheme corresponding to the telephone network and / or the VoIP network through the voice call channel. It features.

When the communication processing unit 140 is connected to a general telephone switching network (or an intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is encoded by an encoding scheme corresponding to the general telephone switching network (or intelligent network). It is preferable to transmit and receive at least one voice data.

According to another embodiment of the present invention, when the communication processing unit 140 is connected to a mobile communication network, the communication processing unit 140 transmits and receives at least one voice data encoded by a corresponding coding scheme corresponding to the mobile communication network. It is desirable to.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a VoIP network, the communication processor 140 transmits and receives at least one voice data encoded by an encoding method corresponding to the VoIP network. It is preferable.

In addition, when it is possible to add (or assign) a predetermined data channel to the voice call channel, the communication processing unit 140 assigns a predetermined data channel to the voice call channel connected through a predetermined telephone network and / or a VoIP network. And add (or assign) and perform data communication with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the added (or assigned) data channel.

* When the communication processing unit 140 is connected to a general telephone switching network (or intelligent network) according to an embodiment of the present invention, the communication processing unit 140 is a predetermined data channel defined in the general telephone switching network (or intelligent network). Add (or assign) to the voice call channel, and perform predetermined data communication with the at least one other call terminal 100 (or server) connected to the call channel through the data channel in addition to the voice call. Do.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 adds (or assigns) a predetermined data channel defined in the mobile communication network to the voice call channel. In addition to the voice call, it is preferable to perform predetermined data communication with at least one other call terminal 100 (or server) connected with the call channel through the data channel.

According to another exemplary embodiment of the present invention, when the communication processing unit 140 accesses the VoIP network, the communication processing unit 140 adds a predetermined data channel defined in the VoIP network to the voice call channel (or And a predetermined data communication in addition to the voice call with at least one or more other call terminals 100 (or servers) to which the call channel is connected through the data channel.

In addition, the communication processor 140 connects at least one terminal (or server) and a predetermined data channel (or communication channel) through a predetermined telephone network and / or a VoIP network independently of the voice call channel. And, it characterized in that the predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to an embodiment of the present invention, when the communication processing unit 140 is connected to a general telephone switching network (or intelligent network), the communication processing unit 140 is a predetermined data communication defined in the general telephone switching network (or intelligent network). It is preferable to connect a predetermined data channel (or communication channel) with at least one terminal (or server) according to a standard, and at least one terminal (or server) and predetermined data through the data channel (or communication channel). Perform communication.

According to another exemplary embodiment of the present invention, when the communication processor 140 accesses a mobile communication network, the communication processor 140 may include at least one terminal according to a CDMA stack based data communication standard defined in the mobile communication network. Or a server) and a predetermined data channel (or communication channel), and perform a predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to another embodiment of the present invention, when the communication processing unit 140 accesses a VoIP network, the communication processing unit 140 may include at least one or more data according to a VoIP protocol stack based data communication standard defined in the VoIP network. It is preferable to connect a predetermined data channel (or communication channel) with a terminal (or server), and perform predetermined data communication with at least one terminal (or server) through the data channel (or communication channel).

According to the present invention, the call terminal 100 reads predetermined payment means information from a predetermined customer card to provide a payment processing function using the call terminal 100 according to the present invention. It is characterized by comprising a).

That is, the customer receiving payment processing using the call terminal 100 according to the present invention through the call terminal 100, based on the ISO / IEC 7810 standard MS (Magnetic Stripe) card, and / or ISO / IEC Have (or own) a contact IC card (or wireless IC chip) based on the 7816 standard and / or at least one contactless IC card (or wireless IC chip) based on the ISO / IEC 14443 standard. The card reader unit 125 may provide an interface for reading at least one or more payment means information from the customer-owned card.

According to an embodiment of the present invention, the card reader unit 125 may include an MS reader unit providing an interface between the MS card and the call terminal 100, and / or the contact IC card and the call terminal 100. And a contact IC reader unit for providing an interface, and / or a contactless IC reader unit for providing an interface between the contactless IC card and the call terminal 100.

The MS reader unit is a card reader unit 125 based on ISO / IEC 7810, and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined payment means information to the call terminal 100 from at least one track (for example, track II area) provided in the MS of the MS card by using the loading.

The contact IC reader unit is a card reader unit 125 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and the predetermined payment means information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit) It is characterized in that the interface to the call terminal (100).

The contactless IC reader unit is a card reader unit 125 based on ISO / IEC 14443. The contactless IC reader unit may be formed at least in electrical contact with the contactless IC card by using capacitive coupling and / or inductive coupling. It comprises one or more antennas, and supplies power to the IC chip of the IC card through the antenna, and calls the predetermined payment means information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an embodiment of the present invention, the card reader unit 125 may provide credit card payment means information, and / or check card payment means information from the customer-owned card for payment processing using the call terminal 100, and / Or it is preferable to read at least one or more of the debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information.

According to the present invention, the call terminal 100 is a predetermined payment approval request text including predetermined payment means information from a predetermined customer card in order to provide a payment processing function using the call terminal 100 according to the present invention. Security for managing the function to generate and transmit to the bansa server 400 through the telephone network and / or VoIP network, and receives and processes the payment approval message corresponding to the payment approval request full text from the bansa server 400 It is characterized in that the application module 145 comprises a Secure Application Module (SAM).

The secure application module (SAM) is a confidentiality and / or authentication required by the call terminal 100 in the process of performing the electronic payment and / or electronic payment using the card. Security requirements, including integrity and / or nonrepudiation, etc., within the call terminal 100 without using an authentication server (or payment server 300) on a payment network. As a safety device for performing a reliable and reliable structure, a predetermined message (information or data) processed in the process of the call terminal 100 performing a predetermined security request function (for example, electronic payment and / or electronic payment function). ) Encrypts or decrypts, adds an authenticator that prevents forgery (or tampering) of the message, or provides important information in the process of performing the security request function. It is characterized by performing a function of storing.

In general, the security application module 145 is preferably composed of a predetermined security application module 145 inserter and a security application module 145 chip, the security application module 145 chip is a chip containing at least 8-bit CPU Application Specific Integrated Circuit (ASIC) chips (eg, PLCC 44-pin chips) and / or IC chips (eg, IC cards in the form of subscriber identity modules (SIMs)) having a performance of 2 MIPS or more. It is preferable to comprise a.

In addition, the security application module 145 is at least one or more security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the call terminal 100 to perform a predetermined security request function ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (e-money company / card company) Registration protocol, authorization protocol, mode switching protocol, key download protocol, SAM revocation protocol) and / or commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / deletion / disposal / initialization) / Reprocessing / cancellation command).

Referring to FIG. 46, the call terminal 100 includes a mode checking unit 155 for checking an operation mode of the call terminal 100 for payment processing using the call terminal 100 according to the present invention. As a result of the check by the mode confirmation unit 155, when the call terminal 100 is a payment mode using the call terminal 100 according to the present invention, a predetermined payment is made from a predetermined customer-owned card through the card reader unit 125. Receiving specialized information including the merchant information, at least one product information and payment amount information from the merchant server 200 through the information reading unit 160 for reading the means information and the communication processing unit 140 An information receiving unit 195, a specialty generation unit 180 for generating a predetermined payment approval request text including the payment means information and the professional generation information, and a full text for transmitting the payment approval message to the bansa server 400. The transmission unit 185, and Receiving a payment authorization specialized corresponding to the payment authorization request professional via the communication processing unit 140, and is characterized in that obtained by having a specialized processing unit 190 for performing an information processing procedure corresponding to the payment authorization professional.

In addition, the call terminal 100 is characterized in that it further comprises a cryptographic processing unit 170 for encrypting in a predetermined encryption method in order to prevent the wiretap and / or eavesdropping and / or hacking the full payment approval request. .

The mode checking unit 155 checks whether an operation mode of the call terminal 100 is a voice call mode, a voice call / data communication mode, or a data communication mode.

In addition, when the operation mode of the call terminal 100 is a voice call / data communication mode, the mode checking unit 155 may use a data channel added to (or assigned to) the voice call channel for data communication. Mode or a data communication mode for payment processing according to the present invention.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the operation result of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is the data channel added (or assigned) to the call channel; It is preferable to receive professional creation information including affiliated store information transmitted from the affiliated store server 200 and at least one product information and payment amount information.

In addition, when the operation mode of the call terminal 100 is a data communication mode, the mode checking unit 155 is whether the data communication mode is a simple data communication mode or a data communication mode for payment processing according to the present invention. It is characterized by checking.

If the check result indicates that the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the mode checking unit 155 may display the screen output unit 120 (and / or the voice processing unit 115). By requesting to interface the customer-owned card through the card reader unit 125 through)), the information reading unit 160 receives predetermined payment means information from the customer-owned card through the card reader unit 125. Process to read.

In addition, if the check result of the operation mode of the call terminal 100 is a data communication mode for payment processing according to the present invention, the information receiving unit 195 is an affiliated store transmitted from the affiliated store server 200 through the data channel It is preferable to receive the professional creation information including the information and at least one product information and payment amount information.

The information receiving unit 195 may receive professional generation information including affiliate store information, at least one product information, and payment amount information through a data channel connected to the affiliate store server 200, according to the intention of the person skilled in the art. Further, at least one or more other professional creation information, such as a document serial number to be included in the payment approval request full text generated by the full text generation unit 180 (can be omitted if the full text serial number is generated by the full text generation unit 180). It is possible to receive, whereby the present invention is not limited.

According to the exemplary embodiment of the present invention, the information receiving unit 195 may output at least one or more product information and payment amount information included in the professional generation information through the screen output unit 120.

When the call terminal 100 is in the payment mode using the call terminal 100 according to the present invention, the information reading unit 160 is connected to the card reader unit 125. And reading predetermined payment means information from a predetermined customer-owned card, wherein the payment means information includes credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and And / or at least one of prepaid card payment means information, and / or bank transfer payment means information.

According to an embodiment of the present invention, the payment means information is any one of credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information In the case of payment means information, the payment means information read by the information reader 160 through the card reader 125 includes at least one or more number arrays, such as a 16-digit card number and / or expiration date. It is preferable to make it.

In addition, when the payment means information corresponds to the account transfer payment means information, the payment means information read out by the information reader 160 through the card reader 125 is a 16-digit account number and / or branch number It is preferable to include at least one or more number arrangements, such as.

The full text generation unit 180 sums the payment means information read through the information reader 160, the merchant information received through the information receiver 195, and the total payment amount information including at least one payment amount information. It characterized in that for generating a predetermined payment approval request full text corresponding to the payment means information.

When the payment means information read through the information reader 160 corresponds to credit card payment means information according to an embodiment of the present invention, the full text generation unit 180 is the credit card payment means information and merchant information And it is preferable to create a full credit card payment approval request including the total payment amount information.

In addition, when the payment means information read out through the information reader 160 corresponds to the check card payment means information, the full text generation unit 180 is the check card payment means information, merchant information and the total payment amount information It is desirable to create a full check card payment approval request including.

In addition, when the payment means information read out through the information reader 160 corresponds to the debit card payment means information, the full text generation unit 180 is the debit card payment means information, merchant information and the total payment amount information It is desirable to create a full debit card payment authorization request including.

In addition, when the payment means information read through the information reading unit 160 corresponds to the prepaid card payment means information, the full text generation unit 180 is the prepaid card payment means information, merchant information and the total payment amount information It is desirable to create a prepaid card payment authorization request containing the full text.

In addition, when the payment means information read through the information reader 160 corresponds to the account transfer payment means information, the full text generation unit 180 is the account transfer payment means information and merchant information (eg, merchant finance) It is preferable to generate a full account transfer payment approval request message including account information) and total payment amount information (for example, account transfer amount information).

The specialized transmission unit 185 transmits the payment approval request message generated by the specialized generation unit 180 through the information reading unit 160 through the telephone network and / or the VoIP network through the communication processing unit 140. The bansa server 400 corresponding to the payment means information read (or included in the full payment approval request) reads, characterized in that for transmitting, the bansa server 400 is the payment approval request full text Transfer to the payment server 300 corresponding to the payment means information included in the payment server 300, after performing a predetermined payment processing procedure corresponding to the payment approval request full text, corresponding to the payment processing procedure A predetermined payment approval message including a payment processing history is generated and transmitted to the bansa server 400, and the bansa server 400 transmits the payment approval message to the call terminal 100.

According to the embodiment of the present invention, in transmitting the full payment approval request to the bansa server 400, the full payment approval request may be exposed to tapping and / or interception and / or hacking, to prevent this The encryption processing unit 170 encrypts the full payment approval request message in a predetermined encryption method, and the encrypted payment means information is the final bansa server 400 (and / or the payment approval request professional) Approved payment server 300 is characterized in that the decrypted by a predetermined decryption method corresponding to the encryption method.

According to an embodiment of the present invention, the encryption method may include at least one of a symmetric key (or secret key) encryption method, a public key encryption method, and / or an electronic envelope encryption method, and / or a key exchange encryption method. It is preferable to include the present invention, and other encryption methods other than the above encryption method may be used according to the intention of those skilled in the art, and the present invention is not limited thereby.

In addition, the encryption key 170 for encrypting the full text of the payment approval request is provided in the security application module 145, and / or may be stored on the memory unit, thereby the present invention This is not limited.

The professional processing unit 190 receives a payment approval message including a payment processing history corresponding to the payment approval request message from the bansa server 400 through the communication processing unit 140 and the payment from the payment approval message. Extract the processing details and output them through the screen output unit 120.

47 is a view showing the appearance of the call terminal 100 is provided with at least one card reader in accordance with another embodiment of the present invention.

In more detail, Fig. 47 shows the appearance of the call terminal 100 in the call terminal 100 shown in Fig. 46, which is provided with a predetermined contact IC card reader and an MS card reader. Those skilled in the art will be able to infer various implementation methods in which at least one card reader is provided in the call terminal 100 by referring to and / or modifying the drawing 47. It includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In FIG. 47, the wired and / or wireless interface connecting the main body of the call terminal 100 and the receiver is omitted for convenience.

Referring to (a) of FIG. 47, the contact IC card reader and the MS card reader are respectively provided in the main body of the call terminal 100. Referring to (b) of FIG. 47, the contact IC card reader Is provided in the main body of the call terminal 100, the MS card reader is provided in the handset of the call terminal (100).

48 is a diagram illustrating an MS card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, FIG. 48 illustrates an embodiment of an MS card for storing payment means information read from a customer-owned card through a card reader provided in the call terminal 100 illustrated in FIG. 46. The MS card shown in FIG. 48 shows a case in which an MS card having a Track I storage area, a Track II storage area, and a Track III storage area stores payment means information according to the present invention in the Track II storage area. Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 48 to modify credit card payment means information, and / or check card payment means information in the Track II storage area of the MS card, And / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information, provided that the bank transfer payment method information is in Track I storage, and / or Track III Would be able to infer a variety of exemplary ways to store having available) in field region, the present invention includes all embodiments in which the inference method, not limited to the exemplary method illustrated in the figure 48.

According to the American Bank Association (ABA) standard, the track II storage area of the MS card can store up to 40 digits of 5-bit characters based on 75 bpi magnetic density, and start digits of one digit size (Start Sentinel). , SS, 0xB), Primary Account Number (PAN) field for storing up to 19 digits, Field Separator (FS, 0xD) with 1 digit size, Addition Data field and Discretionary Data) field, one digit end character (End Sentinel, ES, 0xF) and one digit long redundancy check (LRC).

Referring to FIG. 48, payment means information providing a payment processing function using the call terminal 100 according to the present invention is stored in a PAN field, an additional data field and an arbitrary data field of the Track II storage area. do.

49 is a view showing an IC card in which predetermined payment means information is stored according to another embodiment of the present invention.

More specifically, Figure 49 is an embodiment of the IC card for storing the payment means information read from the customer-owned card through the card reader provided in the call terminal 100 shown in Figure 46, for convenience, FIG. 49 illustrates a case in which payment means information according to the present invention is stored in a memory of a contact type IC card. Those skilled in the art to which the present invention pertains may refer to and / or modify the present invention. Credit card payment means information, and / or check card payment means information, and / or debit card payment means information, and / or prepaid card payment means information, and / or bank transfer payment means information in the memory of the IC card. Various implementation methods may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation methods illustrated in FIG.

With reference to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip's IC chip may include power supply (VCC), reset signal (RST), clock signal (CLK), ground (GND), and programming. I / O interfaces for communicating with the call terminal 100 (e.g., exchanging commands or data) through contact points such as power supply (VPP) and / or input / output (I / O), CPU (Central Process Unit), MPU ( A processor unit including at least one computing element including a micro process unit, and / or a coprocessor, a read only memory (ROM), a random access memory (RAM), an electrically erasable and programmable read only (EEPROM) And a memory unit including at least one memory element including memory, flash memory (FM), and the like, in particular, at least one of the memory elements (eg, a ROM) is a chip for managing and operating internal resources of an IC card. operating system (Chip Operating System; COS) is stored, when a predetermined power is supplied from the call terminal 100 through the power supply (VCC) contact point of the input and output interface COS stored in the memory unit is loaded into a predetermined execution memory The IC chip and the call terminal 100 are controlled through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data between them.

According to the present invention, the memory unit of the IC chip is loaded in the card terminal to terminate at least one or more programs of the pre-driven program, to drive a specific program of a plurality of programs stored in the card terminal, or the card And card storage information for executing a function of converting a screen configuration and / or a function set in the terminal into a specific screen configuration and / or a specific function. The card storage information is read and read by the terminal program. And / or is driven or executed by a data unit for storing a data set corresponding to predetermined information or data to be used, an arithmetic function of the processor unit and an instruction set provided by a COS, and used by the terminal program. Program routines (eg Java for Javacard) JAVA Applet) is provided with a processing unit corresponding to an application including an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit. Read a command provided from the terminal program via an input / output interface, and read or write at least one or more information or data stored in the data unit based on the read command, and as a result or read information or data It is characterized in that to provide to the terminal program via the input and output interface through the APDU.

According to a preferred embodiment of the present invention, the memory unit of the IC chip includes a security structure based on ISO / IEC 10202, and accordingly, the memory unit is a protection area in which secret information such as a chip serial number (CSN) is stored. And a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area, and the like. The card storage information for the present invention includes the protection area and the COS control area. It is preferable to be stored in an area except for.

In addition, according to the ISO / IEC 7816 and / or ISO / IEC 14443 ICC standard, the memory unit includes one master file (MF) corresponding to a root file, and at least one lower part of the master file. ATR (Answer To Reset) including function information about stored information, at least one dedicated file (DF) corresponding to each ICC stored information, and a smart card service disposed under the dedicated file. It includes a file structure consisting of an element file (EF) containing substantial information and / or data for, the card storage information for the present invention also comprises such a file structure.

Referring to FIG. 49 according to an embodiment of the present invention, the data unit of the card storage information may store at least one or more payment means information for payment processing using the call terminal 100 according to the present invention. The payment method information may be at least one of credit card payment method information, and / or check card payment method information, and / or debit card payment method information, and / or prepaid card payment method information, and / or bank transfer payment method information. It is made, including.

50 is a diagram illustrating a method for encrypting and transmitting a transmission approval request text in a symmetric key (or secret key) method in a call terminal 100 according to another exemplary embodiment of the present invention.

More specifically, Figure 50 is an embodiment of the present invention for encrypting and transmitting the full payment approval request in a symmetric key (or secret key) method in the call terminal 100 with the encryption function as shown in Figure 46, the present invention If there is a general knowledge in the art, the full text of the payment approval request at the call terminal 100 on the telephone network and / or the VoIP network by referring to and / or modifying the drawing 50 is a symmetric key (or a secret key). It will be possible to infer various implementation methods of encryption in a manner, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 50 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the official certificate provided in the call terminal 100, the official certificate to the call terminal 100 Stored in a predetermined memory unit and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the call terminal 100, and / or the call terminal 100 In the case where a predetermined IC card reader is provided, all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

According to another embodiment of the present invention, the symmetric key (or secret key) is stored in the memory unit provided in the call terminal 100 in addition to the public certificate, and / or provided to the call terminal 100 from a server. It can be included in the interface screen, and / or embedded in the communication program to communicate with the bansa server 400 on the call terminal 100, by which anti-invention is not limited.

Referring to FIG. 50, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined payment approval request text is provided to the encryption processing unit 170 (5000), and the payment approval request expert is provided. When the encryption processing unit 170 reads a predetermined symmetric key (or secret key) for encrypting the payment approval request text from the official certificate provided in the call terminal 100 (5005), the read symmetric key (Or a private key) encrypts the full text of the payment approval request (5010).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the symmetric key (or secret key) is k (key), the full payment approval request is P (Plaintext), and the symmetric key (or If the full payment approval request encrypted with a secret key) is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by a formula such as "Ek (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack It is preferable to include at least one or more of an International Data Encryption Algorithm (IDEA), and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment approval request expert is encrypted through the symmetric key (or the secret key) as described above, the communication processing unit 140 transmits the encrypted payment approval request message through the communication protocol defined on the telephone network and / or the VoIP network. The transfer to the bansa server 400 (5015).

51 is a diagram illustrating a method for encrypting and transmitting a payment approval request message in a public key based structure in a call terminal 100 according to another embodiment of the present invention.

More specifically, FIG. 51 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in a public key infrastructure structure in a call terminal 100 having an encryption function as shown in FIG. 46. If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or VoIP network by referring to and / or modifying the drawing 51. Although it can be inferred, the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 51 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, the public certificate provided in the call terminal 100 Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 51, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (5100), and the payment approval request expert is provided. When the encryption processing unit 170 extracts a predetermined server-side public key for encrypting the payment approval request message from the authorized certificate (5105), the payment approval request message is obtained through the extracted server-side public key. Encrypt (5110).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the payment approval request full text P (Plaintext), and the server-side public key encrypted payment When the full text of the approval request is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). ), DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH is preferably included at least one or more, in addition to various encryption algorithms may be used, but by a specific encryption algorithm The present invention is not limited.

For example, in the case of encrypting the full payment approval request message through the RSA encryption algorithm among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by the different prime factors of n is a. And b, if the published index (e.g., 3 or 216+) is e, and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a -1) (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment approval request expert is encrypted through the server-side public key as described above, the communication processing unit 140 transmits the encrypted payment approval request message to the bansa server 400 through a network component on the telephone network and / or the VoIP network. The transmission is performed at 5115.

52 is a diagram illustrating a method for encrypting and transmitting a payment approval request text in an electronic envelope method in a call terminal 100 according to another embodiment of the present invention.

More specifically, Figure 52 is an embodiment of the method for encrypting and transmitting the payment approval request full text in an electronic envelope method in the call terminal 100 with the encryption function as shown in Figure 46, in the technical field to which the present invention belongs Those skilled in the art may refer to and / or modify this drawing 52 to infer various implementation methods for encrypting the full text of the payment approval request in an electronic envelope method in the call terminal 100 on the telephone network and / or the VoIP network. As will be appreciated, the present invention includes all the inferred implementation methods, and is not limited to the implementation method illustrated in FIG.

In this drawing 52 according to the embodiment of the present invention, the server-side public key is preferably read from the public certificate provided in the call terminal 100, and the public certificate is provided in the call terminal 100. Stored in a memory unit of the terminal and / or stored in an IC chip (or IC card) of ID-000 type mounted on or detached from the communication terminal 100, and / or predetermined in the communication terminal 100. When the IC card reader is provided, it is possible to store all of the IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the public certificate to the call terminal 100, and thus, the present invention is not limited thereto. .

Referring to FIG. 52, when a predetermined payment approval request message is generated in the text generation unit 180 of the call terminal 100, the predetermined text is provided to the cryptographic processing unit 170 (5200). The payment approval request expert is provided. The encryption processing unit 170 generates a random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (5205), and generates the secret. The payment approval request text is encrypted using a key (5210).

Here, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the payment approval request full text P (Plaintext), and the payment approval request encrypted with the secret key When the full text is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data). It is preferable to include at least one or more of the Encryption Algorithm, and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

Thereafter, the encryption processing unit 170 encrypts the secret key (random secret key) used to encrypt the full payment approval request message. For this purpose, the encryption processing unit 170 obtains a predetermined server-side public key from the public certificate. It extracts (5215) and encrypts the secret key using the server-side public key (5220).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Ek1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Ek1 (r) = re mod n ".

When the payment approval request expert is encrypted with the secret key, and the secret key is encrypted with the server-side public key, the encryption processing unit 170 encrypts the secret with the payment approval request message and the server-side public key encrypted with the secret key. Generate and provide transaction data associated with a key to the communication processor 140 (5225), and the communication processor 140 transmits the transaction data through a network component on a telephone network and / or a VoIP network. And transmit (5230).

53A and 53B illustrate a method of encrypting and transmitting a payment approval request message in a key exchange method in the call terminal 100 according to another embodiment of the present invention.

In more detail, Figure 53a and Figure 53b is a method for encrypting and transmitting the full payment approval request in a key exchange method in the call terminal 100 with the encryption function as shown in Figure 46, the present invention If there is a general knowledge in the field, various implementation methods for encrypting the full text of the payment approval request in the call terminal 100 on the telephone network and / or the VoIP network with reference to and / or modifying the present figure 53 It may be inferred, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 53 according to the embodiment of the present invention, the terminal-side private key and the server-side public key are preferably read from the authorized certificate provided in the call terminal 100, and the authorized certificate is the call terminal 100. Stored in a predetermined memory unit and / or stored in an ID-000 type IC chip (or IC card) mounted on or detached from the call terminal 100, and / or the call terminal ( If a predetermined IC card reader is provided at 100), all of them can be stored in an IC card inserted into the IC card reader, and the present invention is not limited thereto.

Alternatively, the terminal-side private key and the server-side public key can be extracted from a predetermined directory (not shown) operated and managed by a certification authority that issues the certificate to the call terminal 100, thereby. The present invention is not limited.

Referring to FIGS. 53A and 53B, when the full text generation request unit 180 of the call terminal 100 generates a predetermined payment approval request text, it is provided to the encryption processing unit 170 (5300). When the requesting expert is provided, the encryption processing unit 170 may transmit a message digest including a predetermined one-way hash function (for example, a hash code of a predetermined length regardless of the length of the payment approval request message). A one-way hash function that generates a message digest and cannot identify (or infer) the original message through the hash code (or message digest) The call terminal 100 and the bansa server 400. Generate a predetermined message digest (5305) using the same hash function, and digitally sign the message digest by encrypting the message digest with the terminal-side private key (5310).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the terminal-side private key is encoded by t1 (46erminal side key), the message digest is m (message digest), and the terminal-side private key. If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 170 may be expressed by an expression such as "Et1 (m) = C".

According to an embodiment of the present invention, the encryption processing unit 170 encrypts the message digest using the terminal-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 170 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 170 generates a predetermined random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (5315), and the payment approval request The message digest encrypted with the full message and the terminal-side private key and a copy of a certificate (eg, a certificate including the terminal-side public key) included in the public certificate are linked and encrypted through the generated secret key (5320).

Herein, the encryption function of the encryption processing unit 170 is referred to as E (Encryption), the secret key is r (random secret key), the full payment authorization request and the copy of the certificate P (Plaintext), and encrypted payment with the secret key If the full text of the approval request and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an equation such as "Er (P) = C".

According to the embodiment of the present invention, the encryption processing unit 170 encrypts the payment approval request full text and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( It is preferable to include at least one or more of the International Data Encryption Algorithm, and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 170 extracts a predetermined server-side public key from the public certificate (5325) to encrypt the private key that encrypts the payment approval request message (5325), and uses the server-side public key. The secret key that encrypts the full payment approval request is encrypted (5330).

Here, the encryption function of the encryption processing unit 170 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 170 may be expressed by an expression such as "Es1 (r) = C".

According to the exemplary embodiment of the present invention, the encryption processing unit 170 encrypts the secret key through the server-side public key: RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 170 may be expressed as" C = Es1 (r) = re mod n ".

A copy of the certificate including the message digest encrypted with the full payment approval request message and the terminal-side private key and the terminal-side public key are linked and encrypted with the generated secret key, and the secret key is encrypted with the server-side public key. If encrypted, the encryption processing unit 170 encrypts a copy of a certificate including the message digest encrypted with the secret key and the terminal side private key encrypted with the secret key with the server side public key. Generate predetermined transaction data in association with the secret key, and provide the generated transaction data to the communication processor 140 (5335), and the communication processor 140 transmits the transaction data to a telephone network and / or a VoIP network. The transmission is transmitted to the bansa server 400 through the network component on the network (5340).

54A and 54B illustrate an operation method of the call terminal 100 for payment processing according to another exemplary embodiment of the present invention.

In more detail, FIGS. 54A and 54B show that the call terminal 100 illustrated in FIG. 46 connects a predetermined merchant server 200 with a call channel for ordering and purchasing a predetermined product, and through the call channel. In the process of performing a product order and purchase procedure of the predetermined through the payment information provided by the merchant terminal 200 in the call terminal 100 and the card reader provided in the call terminal (100) By generating the full payment approval request of the to the bansa server 400 through a data channel corresponding to the telephone network and / or VoIP network, the bansa server 400 to the purchase product through the full payment approval request message As an implementation method for the operation method of the call terminal 100 to perform the payment processing for, if the person of ordinary skill in the art to which the present invention belongs, With reference to page 54b and / or modified, the call terminal 100 generates a predetermined payment approval request full text through payment information provided from the affiliate server 200 and payment means information read through the card reader. Various implementation methods for performing payment processing for goods may be inferred, but the present invention includes all the implementation methods inferred above and is not limited by the implementation methods shown in FIGS. 54A and 54B.

For example, in FIGS. 54A and 54B, the terminal performs an encryption procedure for predetermined payment means information read from the customer-owned card. The encryption procedure provides a high level of security for the payment means information. It is to be carried out in order to meet, and may be omitted according to the intention of those skilled in the art, thereby not limiting the present invention.

In the following Figures 54a and 54b, the call terminal 100 having the card reader shown in Figure 46 is referred to as "terminal" for convenience, and the affiliated store server 200 is referred to as "server" for convenience.

54A and 54B, a terminal conforming to the functional configuration shown in FIG. 46 may include at least one or more telephone networks (e.g., general switched telephone network (or intelligent network), and / or mobile communication network) and / or VoIP network (e.g., Connect a predetermined communication channel with the server through TCP / IP (and / or UDP / IP) based wired communication network (IEEE 802.16x based portable Internet) (5400), and order the goods provided by the server through the communication channel. According to the procedure, a procedure of selecting, ordering, and purchasing at least one or more purchased products is performed (5405).

Those skilled in the art to which the present invention pertains, the terminal connects the predetermined communication channel with the server, and through the communication channel through a predetermined product order procedure (eg, ARS and / or counselor connection) As you will be familiar with key tones-based product ordering procedures, the detailed process is omitted for convenience.

During the product order process as described above, the terminal from the merchant server 200 through the data channel corresponding to at least one telephone network and / or VoIP network, the merchant information and at least one product information and payment amount information In operation 5510, if the predetermined payment information is received from the server, the terminal switches the operation mode to the payment processing mode using the data channel (5520). Output through a screen output means provided in the terminal to read predetermined payment means information from the customer-owned card through a card reader provided in the terminal, and / or output through a voice output means provided in the terminal. (5425).

After the predetermined payment means information reading is requested from the customer-owned card as described above, the terminal checks whether the predetermined payment means information is read from the customer-owned card through the card reader (5430). When predetermined payment means information is read from 5542, the terminal generates a predetermined payment approval request message including the read payment means information and payment information received from the server (5440).

According to an embodiment of the present invention, when the server generates a predetermined document serial number and transmits it in the payment information, the document serial number included in the full payment approval request is a document serial number included in the payment information. If the payment information does not include a predetermined serial number, the terminal generates a predetermined serial number for inclusion in the full payment approval request.

Thereafter, the terminal performs an encryption procedure for the full payment approval request message including the payment means information and the payment information (5445).

If the full payment approval request is encrypted (5450), the terminal extracts a predetermined Bansa server 400 network address from the memory unit, and corresponds to at least one telephone network and / or VoIP network based on the network address. The bansa server 400 connects the communication channel for transmitting and receiving the payment approval message through a payment network (5455), and transmits the encrypted payment approval request message to the bansa server 400 through the communication channel. (5460).

Thereafter, the terminal performs a predetermined payment processing procedure through the payment approval request message, and then the payment approval request message from the bansa server 400 through a data channel set in the telephone network and / or VoIP network. In step 5465, if the payment approval message corresponding to the payment approval request message is received (5470), the terminal reads the received payment approval message to read the payment approval message. In operation 5475, the payment processing corresponding to the full text is confirmed.

If the payment processing corresponding to the full payment approval request is approved (5480), the terminal performs an order procedure after the payment processing approval (5485), the product orders using the call terminal 100 according to the present invention and Finalize the purchase and payment process.

According to the present invention, a card reader (eg, MS card reader, IC card reader, etc.) is provided in a call terminal connected to a telephone network and / or a VoIP network, and a voice call is made between the call terminal and a predetermined affiliated server (or terminal). With the channel connected, the call terminal reads predetermined payment means information through the card reader, and then transmits the payment means information to the affiliated server (and / or bansa server, and / or payment server) to make a payment. By processing, there is an advantage that the payment process conveniently without the payment error due to the wrong operation in the payment processing process using the call terminal.

According to the present invention, a card reader (eg, MS card reader, IC card reader, etc.) is provided in a call terminal connected to a telephone network and / or a VoIP network, and a voice call is made between the call terminal and a predetermined affiliated server (or terminal). In the state where the channel is connected, receiving predetermined payment information from the server (or terminal) of the merchant side, reading predetermined payment means information through the card reader in the call terminal, and then the payment means information and payment information By generating a payment approval request text including the full payment processing, there is an advantage that the payment processing process conveniently using the call terminal without a payment error due to an incorrect operation.

Claims (1)

Connecting a communication channel with a payment customer telephone equipped with a card reader in a payment relay server; Receiving a payment approval request message including card information from the payment customer phone through the communication channel at a payment relay server; Confirming card information through a payment approval request message including the received card information in a payment relay server, and requesting payment approval from a card company (or bank) corresponding to the confirmed card information; And And after receiving the payment approval result from the card company (or bank) at the payment relay server, transmitting the received payment approval result to the payment customer phone and the payment target product (or service) sales company. Payment relay processing method using a payment customer telephone to.

Images