KR20090002269A - System and method for payment online, home banking terminal and program recording medium - Google Patents

System and method for payment online, home banking terminal and program recording medium Download PDF

Info

Publication number
KR20090002269A
KR20090002269A KR1020070062565A KR20070062565A KR20090002269A KR 20090002269 A KR20090002269 A KR 20090002269A KR 1020070062565 A KR1020070062565 A KR 1020070062565A KR 20070062565 A KR20070062565 A KR 20070062565A KR 20090002269 A KR20090002269 A KR 20090002269A
Authority
KR
South Korea
Prior art keywords
information
predetermined
payment
card
terminal
Prior art date
Application number
KR1020070062565A
Other languages
Korean (ko)
Inventor
김순동
Original Assignee
김순동
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 김순동 filed Critical 김순동
Priority to KR1020070062565A priority Critical patent/KR20090002269A/en
Publication of KR20090002269A publication Critical patent/KR20090002269A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • G06Q20/108Remote banking, e.g. home banking
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4018Transaction verification using the card verification value [CVV] associated with the card

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention relates to an online payment method and system, a home banking terminal, and a recording medium therefor. The online payment method according to the present invention transmits predetermined purchase request information by accessing a predetermined client terminal through a predetermined communication network. And generating predetermined payment amount information and affiliated store information corresponding to the purchase request information from a predetermined shopping mall server and transmitting the predetermined payment amount information and affiliated store information to the client terminal through the communication network. When the information is transmitted through a predetermined cable communication (or short-range wireless communication), a predetermined home banking terminal receives the payment amount information and merchant information through the cable communication (or short-range wireless communication), and receives a predetermined number from a predetermined customer card. Reading the card information of the card information and the payment information And generating a predetermined payment approval request message including affiliate store information and transmitting the predetermined payment approval request message to a predetermined server through a predetermined communication network.

Description

System and Method for Payment Online, Home Banking Terminal and Program Recording Medium}

1 is a diagram illustrating a functional configuration of a home banking terminal for online payment processing associated with a client terminal according to an embodiment of the present invention.

2 is a diagram illustrating the appearance of a home banking terminal according to an embodiment of the present invention.

3 is a diagram illustrating a configuration of an internet shopping system for card payment using a home banking terminal according to an exemplary embodiment of the present invention.

4 is a diagram illustrating an internet shopping process for card payment using a home banking terminal according to an embodiment of the present invention.

5 is a diagram illustrating a card payment system configuration using a home banking terminal according to an embodiment of the present invention.

6 is a diagram illustrating an operation process of a home banking terminal for generating a full payment approval request message according to an embodiment of the present invention.

7 is a diagram illustrating an operation of a home banking terminal for transmitting and receiving a payment related message to a relay server according to an embodiment of the present invention.

8 is a diagram illustrating a relay server operation process according to an embodiment of the present invention.

9 is a diagram illustrating a method of encrypting and transmitting a payment approval request message in a symmetric key (or secret key) method in a home banking terminal according to an embodiment of the present invention.

FIG. 10 is a diagram illustrating a method for decrypting a payment approval request message encrypted and received at a relay server using a symmetric key (or secret key) method according to an embodiment of the present invention.

12 is a diagram illustrating a method of decrypting a full payment approval request message encrypted and received by a relay server according to an embodiment of the present invention using a public key infrastructure.

FIG. 13 is a diagram illustrating a method of encrypting and transmitting a payment approval request message in an electronic envelope method in a home banking terminal according to an embodiment of the present invention.

14 is a diagram illustrating a method for decrypting a full payment approval request message encrypted and received by a relay server according to an embodiment of the present invention by an electronic envelope method.

15A and 15B illustrate a method of encrypting and transmitting a full payment approval request message in a key exchange method in a home banking terminal according to an embodiment of the present invention.

16A and 16B are diagrams illustrating a method of decrypting a full payment approval request message encrypted and received by a relay server according to an embodiment of the present invention using a key exchange method.

17 is a diagram illustrating a card company server operation process for approval of payment using a home banking terminal according to an embodiment of the present invention.

<Description of main parts of drawing>

100: home banking terminal 105: control unit

110: interface output unit 115: information receiving unit

120: mode check unit 125: card information input unit

130: professional generation unit 135: password processing unit

140: professional transmitter 145: professional receiver

150: professional processing unit 155: memory unit

160: screen output unit 165: key input unit

170: card reader 173: power supply

175: voice call unit 177: communication processing unit

179: banking authentication module 180: client terminal

183: shopping mall server 185: subscriber D / B

187: communication company server 190: relay server

193: financial company server 195: card company server

197: switch 198: voice call terminal

199: Customer Card

According to the present invention, when a predetermined client terminal is connected through a predetermined communication network to transmit predetermined purchase request information, the present invention generates predetermined payment amount information and merchant information corresponding to the purchase request information to the client terminal through the communication network. When the shopping mall server to transmit and the payment information and the merchant information received from the client terminal through a predetermined cable communication (or short-range wireless communication), the payment amount information through the cable communication (or short-range wireless communication) And receiving merchant information, reading predetermined card information from a predetermined customer card, generating a predetermined payment approval request message including the card information, payment amount information, and merchant information, and establishing a predetermined server through a predetermined communication network. Online payment system having a home banking terminal for transmitting to A.

As information and communication technology continues to develop, various non-face-to-face financial transaction (or payment) channels are being commercialized to support various home banking (or home payment) services.

However, since a non-face-to-face financial transaction (or payment) channel for supporting a conventional home banking (or home payment) service is based on key input of various financial information (or payment information), Financial information (or payment information) includes a fatal problem that can be exposed.

An object of the present invention for solving the above problems is to connect a cable communication (or short-range wireless communication) with a predetermined client terminal through a predetermined cable communication (or short-range wireless communication), and to establish a communication channel with a server on a predetermined communication network. A communication processing unit for connecting, an information receiving unit for receiving predetermined payment amount information and merchant information from the client terminal through the cable communication (or short-range wireless communication) in association with the communication processing unit, and a predetermined card from a predetermined customer card A card reader for reading information, a text generation section for generating a predetermined payment approval request message including the card information, payment amount information, and merchant information, and a text message for transmitting the text of the payment approval request message through the communication network; Receiving the payment amount information and the affiliated store information through the information and the information receiving unit; After reading the card information from the customer card, online with a banking authentication module for generating a predetermined payment approval request message including the card information, payment amount information and merchant information to control the transmission to the server on the communication network The present invention provides a home banking terminal for payment processing.

In the online payment method according to the present invention, when a predetermined client terminal connects through a predetermined communication network and transmits predetermined purchase request information, the predetermined shopping mall server provides predetermined payment amount information and affiliated store corresponding to the purchase request information. Generating information and transmitting the information to the client terminal through the communication network; and transmitting the received payment amount information and merchant information through a predetermined cable communication (or short-range wireless communication) from the client terminal, and then to a predetermined home banking terminal. Receive the payment amount information and merchant information through the cable communication (or short-range wireless communication), read predetermined card information from a predetermined customer card, and include the card information, payment amount information, and merchant information. Generate a payment approval request message of And transmitting to the server.

The present invention includes a recording medium which records a program for executing the above-described online payment method.

On the other hand, in the online payment system according to the present invention, when a predetermined client terminal is connected through a predetermined communication network to transmit predetermined purchase request information, the predetermined payment amount information and merchant information corresponding to the purchase request information are generated. And the shopping mall server transmitting the payment information and the affiliated store information to the client terminal through the communication network through a predetermined cable communication (or near field communication), the cable communication (or near field). Wireless payment), the payment amount information and merchant information is received, predetermined card information is read from a predetermined customer card, and a predetermined payment approval request full text including the card information, payment amount information and merchant information is generated. A home banking terminal for transmitting to a predetermined server through a predetermined communication network Characterized in that made.

Meanwhile, the home banking terminal for the online payment processing according to the present invention connects a predetermined client terminal with a cable communication (or near field communication) through a predetermined cable communication (or near field communication), and a server on a predetermined communication network. A communication processing unit for connecting a communication channel with a communication channel, an information receiving unit for receiving predetermined payment amount information and merchant information from the client terminal through the cable communication (or short-range wireless communication) in connection with the communication processing unit, and a predetermined customer card. A card reader unit for reading predetermined card information from a card reader, a professional generating unit for generating a predetermined payment approval request message including the card information, payment amount information, and merchant information, and a full text of the payment approval request message through the communication network; Determination of the payment amount information and the merchant through the specialized transmission unit and the information receiving unit for transmitting And receiving the card information from the customer card, generating a predetermined payment approval request message including the card information, payment amount information, and merchant information, and transmitting the banking authentication to the server on the communication network. It is characterized by comprising a module.

According to the present invention, the home banking terminal for the online payment processing, when the payment amount information and merchant information received from the client terminal through the information receiving unit, the operation mode of the home banking terminal to the payment mode (or It is characterized by comprising a mode confirmation unit for the selection).

On the other hand, the present invention includes a recording medium characterized by recording a program for realizing the above-described home banking terminal configuration function for the online payment processing.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. That is, each means described above is a server (or terminal) provided on the system shown in the following embodiments, or is a predetermined functional configuration provided in at least one or more servers (or terminals), or at least one or more servers. (Or a terminal) may be an association of at least two or more functional components. In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a functional configuration of a home banking terminal 100 for online payment processing associated with a client terminal 180 according to an embodiment of the present invention.

In more detail, Figure 1 is connected to a predetermined shopping mall server 183 from a predetermined client terminal 180 connected to a predetermined communication network through a predetermined communication device to purchase at least one product (or service), and then When paying for the purchase price, if the shopping mall server 183 transmits predetermined payment amount information and affiliated store information to the client terminal 180, predetermined cable communication (or short-range wireless communication) is performed on the client terminal 180. The home banking terminal 100 transmits the payment amount information and the affiliated store information to the home banking terminal 100 and processes the payment for the received payment amount in the home banking terminal 100 in response thereto. As a method, one of ordinary skill in the art to which the present invention pertains, the client terminal by referring to and / or modifying the present Figure 1 Although various home banking terminal 100 function configurations for online payment processing associated with 180 may be inferred, the technical features of the present invention are not limited by the present invention, but all the inferred implementation methods It is to be included.

Referring to FIG. 1, the home banking terminal 100 for the online payment processing associated with the client terminal 180 basically includes a control unit 105, a memory unit 155, a card reader unit 170, and a key input unit. 165, a screen output unit 160, a communication processing unit 177, a banking authentication module 179, and a power supply unit 173 for supplying power to the home banking terminal 100. It is preferable to include at least one or more of various terminal functional units, etc. according to the intention of the present invention. FIG. 1 is a functional component of one of the terminal functional units for convenience. The home banking terminal 100 is a wired telephone (or VoIP phone). Although the voice call unit 175 is illustrated for use, the present invention is not limited thereto, and it is apparent that the present invention can be provided with various terminal functions according to the intention of those skilled in the art. It is.

Referring to FIG. 1 according to an embodiment of the present invention, the home banking terminal 100 includes a predetermined relay having a professional relay function for an online payment processing associated with the client terminal 180 through a predetermined communication network. Preferably, the relay server 190 is communicatively connected, and the relay server 190 provides an online payment processing function associated with the financial institution server 193 or the client terminal 180 that provides at least one home banking function. The card company server 195 is preferably connected in communication.

In addition, a predetermined voice call terminal 198 (eg, a wireless call terminal or a wired call terminal) through the communication network and a predetermined switch 197 to connect a voice call channel corresponding to the voice call unit 175. It is preferable to connect the voice call channel with the.

The controller 105 controls the overall operation of the home banking terminal 100 in terms of function configuration, manages the flow of information or data between components, and performs home banking for an online payment function associated with the client terminal 180. Characterized in that interlocking and controlling at least one or more components provided in the terminal 100, at least one processor and execution memory (Central Processing Unit (MPU) / Micro Processing Unit (MPU) hardware) For example, it comprises a register and / or RAM (Random Access Memory) and a bus (BUS) for inputting and outputting predetermined data, and is also prescribed to perform a function specific to the home banking terminal 100 in software A predetermined program routine which is loaded from the recording medium of the recording medium into the execution memory and is processed by the processor. And / or program data (hence, a predetermined program recorded on a recording medium provided in the home banking terminal 100 for an online payment function associated with the client terminal 180, and / or the home banking terminal ( Among the functional configurations provided in 100), a component capable of being processed by software is illustrated as being provided in the controller 105).

According to the exemplary embodiment of the present invention, the control unit 105 outputs a component (eg, the memory unit 155, the card reader unit 170, the key input unit 165, and the screen output provided in the home banking terminal 100). The home banking terminal 100 by interworking with the unit 160, the communication processing unit 177, the banking authentication module 179, and at least one or more various terminal function units (for example, the voice call unit 175) according to the intention of the person skilled in the art. In addition to controlling and managing the home banking function defined in the above), the components provided in the home banking terminal 100 for the online payment processing associated with the client terminal 180 according to the present invention are interoperable with each other. Control and / or to execute a program recorded on a recording medium provided in the home banking terminal 100 for online payment processing associated with the client terminal 180.

The memory unit 155 is input and output when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the home banking terminal 100 is performed. General term of non-volatile memory for storing information or data), at least one of which includes EEPROM (Electrically Erasable and Programmable Read Only Memory) and / or Flash Memory (FM) and / or Hard Disk Drive (HDD) in hardware. It includes the above storage means, the predetermined program routine and program data required for the control unit 105 to perform a predetermined control function (e.g., data input or output for the program routine to perform a predetermined function) ) Is stored.

According to the exemplary embodiment of the present invention, the memory unit 155 may store predetermined terminal specific information for identifying the home banking terminal 100 provided in the home, wherein the terminal specific information is the home banking terminal. (100) Including a unique number (or serial number) assigned to the home banking terminal 100 by a manufacturing institution (or distribution organization), or the terminal address information (for example, if a fixed IP is assigned to the terminal, At least one IP address information or MAC (Media Access Control) address information corresponding to the network communication unit of the terminal is preferably included.

In addition, the memory unit 155 may include a financial transaction history storage area for storing at least one financial transaction history information processed through the home banking terminal 100 and at least one payment processed through the home banking terminal 100. It is preferable to have a payment processing history storage area for storing the processing history information.

The customer who receives the online payment processing associated with the client terminal 180 according to the present invention through the home banking terminal 100 is based on the ISO / IEC 7810 standard, an MS (Magnetic Stripe) card, and / or ISO / Have a customer card (199) that includes at least one contact IC card (or wireless IC chip) based on IEC 7816 and / or at least one contactless IC card (or wireless IC chip) based on ISO / IEC 14443 (Or owned), the card reader unit 170 is characterized in that to provide an interface for reading at least one or more card information provided in the customer card (199).

According to the embodiment of the present invention, the card reader unit 170 is an MS reader unit for providing an interface between the MS card and the home banking terminal 100, and / or the contact IC card and the home banking terminal 100. And a contact IC reader unit providing an interface between the contactless IC reader and / or the contactless IC reader unit providing an interface between the contactless IC card and the home banking terminal 100.

The MS reader unit is a card reader unit 170 based on ISO / IEC 7810 and includes at least one magnetic head including a predetermined coil, and includes predetermined information (eg, magnetized binary). When the MS card on which (Binary) data is recorded moves in a predetermined direction in close contact with the magnetic head (or the magnetic head moves in close contact with an MS card in which predetermined information is recorded), a predetermined electrical signal is transmitted to the magnetic head. It is characterized by interfacing the predetermined card information to the home banking terminal 100 from at least one or more tracks provided in the MS of the MS card by using the loaded.

The contact IC reader unit is a card reader unit 170 based on ISO / IEC 7816, and includes at least one contact point that makes electrical contact with a chip on board (COB) provided in the contact IC card. It supplies the power to the IC chip of the IC card through the contact point, and home-banking predetermined card information from the IC chip through the half duplex transaction using an APDU (Application Protocol Data Unit). Characterized in that the interface to the terminal 100.

The non-contact IC reader unit is a card reader unit 170 based on ISO / IEC 14443. The non-contact IC reader makes contact between the non-contact IC card and the non-contact by using capacitive coupling and / or inductive coupling. It comprises at least one antenna, and supplies power to the IC chip of the IC card through the antenna, home banking predetermined card information from the IC chip through the half-duplex transaction using the APDU Characterized in that the interface to the terminal 100.

According to an exemplary embodiment of the present invention, the card reader unit 170 may include predetermined card information (eg, provided in a card) from at least one or more card reader units 170 for a home banking function defined in the home banking terminal 100. Payment means information corresponding to a payment means including at least one of a credit card, a debit card, a debit card, a cash card and a financial account), and is also online in connection with the client terminal 180 according to the present invention. It is preferable to read predetermined card information from at least one customer card 199 for payment processing.

According to an embodiment of the present invention, the card information comprises at least one predetermined account number, financial company information and cardholder information for home banking processing, or a card number (eg, a cash card number) and financial company information and It is preferable to include at least one cardholder information, or predetermined card numbers (eg, credit card number, check card number, debit card number, etc.) for the online payment processing associated with the client terminal 180. ), Card company information, expiration date information (some may be omitted), and cardholder information.

The key input unit 165 is provided with at least one key button including at least one or more number keys and / or character keys and / or function keys. Detects information (or signal) inputted from a key input device of the device and detects a predetermined information provided in the key input device in a specific input mode (or operation mode) of the home banking terminal 100 controlled by the controller 105. When predetermined information (or signal) is input from a key button, a key event corresponding to the input information (or signal) is generated, and the generated key event is provided to the controller 105. The controller 105 obtains predetermined key data corresponding to the key event in the current input mode (or operation mode) of the home banking terminal 100, and / or defines a predetermined defined match with the key event. And obtaining a command to execute a function. The key input unit 165 and the key input device having at least one key button interwork with each other to perform a function of key input means provided in the home banking terminal 100.

A key input device interoperating with the key input unit 165 may include a keypad device having at least one numeric key and a function key, and / or at least one numeric key and a letter key (eg, English letter key, and / or Korean). Keyboard device having a character key) and a function key, and / or have at least one numeric key and a function key in conjunction with the screen output means, and / or have at least one numeric key, a character key and a function key. It is preferable to include at least one touch screen device.

According to an exemplary embodiment of the present invention, the key input unit 165 may include key data corresponding to the home banking function from at least one or more key input devices for the home banking function defined in the home banking terminal 100 (eg, a payment amount). It is preferable to perform the function of the key input means for receiving the input, and also the online payment associated with the client terminal 180 from the key input device for the online payment processing associated with the client terminal 180 according to the present invention. It is preferable to perform the function of the key input means for receiving at least one or more key data required in the payment process providing process.

According to an exemplary embodiment of the present invention, the key input device corresponding to the key input unit 165 may set the operation mode of the home banking terminal 100 in an initial mode or at least one home banking mode (or an additional service mode). It is desirable to have a key button for switching to the payment mode for the online payment processing associated with 180.

The screen output unit 160 is a liquid crystal display (LCD) and / or CRT (by the control unit 105) in the process of the home banking terminal 100 performs a predetermined function (for example, electronic payment processing function) And at least one information (or data) that is predefined or defined in real time to be output to a predetermined display output device including a Cathode Ray Tube) through a predefined interface screen. 160 and the screen output device interoperate with each other to perform the function of the screen output means provided in the home banking terminal 100.

Predefined information (or data) to be output from the home banking terminal 100 to the screen output device may be provided in the key data input through the key input unit 165 and / or in the home banking terminal 100. Information (or data) stored or generated by a component, information (or data) transmitted / received through the communication processor 177, and / or information corresponding to a predetermined operation result performed by the home banking terminal 100 ( Or data).

According to a preferred embodiment of the present invention, the screen output unit 160 outputs a screen for outputting the electronic payment processing screen according to each electronic payment step to the screen output device for the home banking function defined in the home banking terminal 100 It is preferable to perform the function of the means, and also to provide the online payment processing associated with the client terminal 180 to the screen output device for the online payment processing associated with the client terminal 180 according to the present invention. It is preferable to perform the function of the screen output means for outputting the corresponding process screen.

The communication processor 177 connects a communication channel with the relay server 190 through a predetermined communication network in the process of the home banking terminal 100 performing a predetermined function (for example, a home banking processing function or a payment settlement processing function). And a network communication unit configured to connect a communication session with a predetermined terminal (or device) located at a short distance with the affiliated store terminal through a predetermined cable communication port according to the intention of a person skilled in the art, or at least And a short range wireless communication unit configured to connect a predetermined short distance communication terminal (or device) device with a predetermined short distance communication terminal (or device) device located at a short distance through at least one short range wireless communication unit and a communication session. Or a communication protocol and / or driver for connecting a communication session). Eojinda.

The network communication unit includes a wired communication network including at least one or more xDSL-based wired communication network, public switched telephone network (PSTN), intelligent network and Ethernet, or code division multiple access (CDMA) / WCDMA. (Wide-CDMA) based mobile communication network, HSDPA (High-Speed Downlink Packet Access) based wireless communication network, IEEE 802.16x based mobile communication network including at least one or more through a wireless communication network, characterized in that connecting the communication channel with the Bansa server And a modem or a network interface card (NIC) for connecting the home banking terminal 100 to the communication network in hardware. The home banking terminal 100 is connected to the communication network in software. Communication protocol and / or driver for the purpose of doing so.

When an operation address is assigned to the home banking terminal 100 according to an exemplary embodiment of the present invention, when the network communication unit connects to the communication network, a predetermined communication company server 187 provided in the communication company is the home banking terminal 100. It is preferable to assign predetermined terminal address information (eg, IP address information) to the terminal address information, and the terminal address information is preferably temporarily stored in the predetermined subscriber D / B 185 provided in the telecommunication company server 187. Do.

According to another exemplary embodiment of the present invention, when a fixed address is assigned to the home banking terminal 100, the predetermined communication company server 187 provided to the telecommunication company provides the terminal address information allocated to the home banking terminal 100. For example, it is preferable to store the IP address information) in the predetermined subscriber D / B 185.

The cable communication unit connects a cable communication session with a predetermined client terminal 180 through a predetermined cable communication (eg, RS-232c, USB (Universal Serial Bus)), and the cable is connected in hardware. It consists of a predetermined cable communication port, and comprises a communication protocol and / or driver for the cable communication in software.

The short range wireless communication unit includes at least one of infrared ray communication, RF (Radio Frequency) communication, Bluetooth (BlueTooth), Wireless LAN (Wi-Fi), Wi-Fi (Ui-Fi), and Ultra Wide Band system (UWB). It is characterized in that for connecting the predetermined client terminal 180 and the short-range wireless communication session through at least one or more short-range wireless communication means, the hardware includes the infrared communication, RF communication, Bluetooth, WLAN, WiFi, UWB And a predetermined short range wireless communication module for short range wireless communication, and includes a communication protocol and / or a driver for the short range wireless communication in software.

According to the present invention, the cable communication unit (or short-range wireless communication unit) receives the predetermined payment amount information and merchant information provided from the predetermined shopping mall server 183 from the client terminal 180 through the communication session. do.

According to another exemplary embodiment of the present invention, the payment amount information and the affiliated store information may be received from the client terminal 180 through the communication device to the network communication unit, and the present invention is not limited thereto.

Among the terminal functional units provided in the home banking terminal 100, the voice call unit 175 has at least one voice call channel (eg, a public switched network) to which a communication network to which a network communication unit of the communication processor 177 is connected is connected. When supporting a Telephone Network (PSTN) based voice call channel or a Voice over IP (VoIP) based voice call channel, etc., the Dual Tone Multi-Frequency (DTMF) scheme (or VoIP) is linked with the network communication unit. Method) and connects at least one voice call terminal 198 (eg, a wired call terminal or a wireless call terminal) and a voice call channel according to the call processing procedure.

If one of ordinary skill in the art to which the present invention pertains, the voice call unit 175 connects a voice call channel with at least one voice call terminal 198 (eg, a wired call terminal or a wireless call terminal). Since it will be familiar with the technical features, a detailed description thereof will be omitted for convenience.

The banking authentication module 179 is the confidentiality and / or authentication and / or (required) required by the home banking terminal 100 in the process of processing home banking (or payment) using the customer card (199) As a safety device for performing security requirements including integrity and / or nonrepudiation in a secure and reliable structure within the home banking terminal 100 without using a server on a communication network, the home banking Encrypts or decrypts a predetermined message (information or data) that is processed in the process of the terminal 100 performing a predetermined security request function (eg, home banking or payment function), and forges (or modulates) the message. It is characterized in that the addition of the authenticator to prevent, or to store the important information in the process of performing the security request function.

According to an exemplary embodiment of the present invention, the banking authentication module 179 may include a banking authentication IC card (eg, an authentication module for authenticating each home banking procedure) issued by a predetermined IC card reader and a predetermined financial company (or card company), or And an IC card having an authentication module for authenticating the online payment processing procedure associated with the client terminal 180).

According to another exemplary embodiment of the present invention, the banking authentication module 179 may include a predetermined banking authentication module 179 inserter and a banking authentication module 179 chip, and a banking authentication module 179 chip. Is a chip containing at least 8-bit CPU and is an Application Specific Integrated Circuit (ASIC) chip (e.g., PLCC 44-pin chip) and / or IC chip (e.g. SIM (IC card in the form of Subscriber Identity Module).

In addition, the banking authentication module 179 may include at least one or more security application data (eg, at least one or more identifiers, versions, expiration dates, issue dates, code values, etc.) required for the home banking terminal 100 to perform a predetermined security request function. ) And / or keys (e.g., one master key and at least one application key) and / or protocols (e.g., trading protocols, re-transaction protocols, previous transaction cancellation protocols, collection protocols, SAM issuance protocols, (financial / card company) Registration protocol, authorization protocol, mode switching protocol, key download protocol, revocation protocol) and various commands (e.g., at least one read / authentication / transmission / registration / setting / mode switching / collection / delete / discard / initialization / reprocessing) / Cancel command).

Referring to FIG. 1, the home banking terminal 100 corresponds to at least one home banking function (eg, account inquiry, transfer account, etc.) or at least one additional service function in association with the screen output unit 160. And an interface output unit 110 for outputting a user interface or a user interface for online payment processing associated with the client terminal 180.

The interface output unit 110 may include at least one function selection menu (or icon) corresponding to at least one or more home banking functions (eg, account inquiry or transfer) provided by the home banking terminal 100, and the home banking. And an interface screen for outputting at least one or more function selection menus (or icons) corresponding to at least one or more additional service functions provided by the terminal 100.

According to the exemplary embodiment of the present invention, the interface output unit 110 may be configured to associate the operation mode of the home banking terminal 100 with the client terminal 180 in an initial mode or at least one home banking mode (or an additional service mode). It is preferable to include a user interface for switching to the payment mode for the online payment processing.

According to the present invention, the interface output unit 110 is a user requesting to read a predetermined customer card 199 through the card reader unit 170 for the online payment processing associated with the client terminal 180. And outputting an interface screen including an interface.

Referring to FIG. 1, the home banking terminal 100 receives predetermined payment amount information and merchant information from a predetermined client terminal 180 in association with a cable communication unit (or a short range wireless communication unit) of the communication processing unit 177. Characterized in that it comprises an information receiving unit 115, the payment amount information and merchant information received through the information receiving unit 115, the operation mode of the home banking terminal 100 is the initial mode or at least one home banking In the mode (or additional service mode), it is preferable to automatically select (or switch) the payment mode corresponding to the online payment processing associated with the client terminal 180.

A predetermined client terminal 180 connected to the same communication network as the home banking terminal 100 through a predetermined communication device accesses a predetermined client terminal 180 (for example, all web servers requesting online payment). Purchase at least one product (or service), and request payment for the purchase amount, the client terminal 180 connects to a communication company (eg, Internet service) to which the client terminal 180 is connected. Provider (ISP)) and the terminal address information assigned to the home banking terminal 100 connected to the same communication network as the client terminal 180 from the telecommunication company server 187, and then the terminal address information The predetermined payment amount information and merchant information are transmitted to the corresponding home banking terminal 100. In response thereto, the information receiving unit 115 of the communication processing unit 177 In conjunction with the cable communication (or local area wireless communication unit) it is characterized in that for receiving the payment information and merchant information from the client terminal 180.

Referring to FIG. 1, the home banking terminal 100 determines whether an operation mode of the home banking terminal 100 is selected (or switched) to a payment mode corresponding to an online payment processing associated with the client terminal 180. When the mode check unit 120 and the operation mode of the home banking terminal 100 is selected (or switched) to the payment mode, the predetermined customer card 199 is linked with the card reader unit 170. And a card information input unit 125 for inputting predetermined card information from the card information input unit. The card information input procedure is preferably authenticated by the banking authentication module 179.

The mode checking unit 120 periodically or (or in response to the payment mode switching event) the operation mode of the home banking terminal 100 in the predetermined initial mode or at least one home banking mode (or additional service mode) the client Characterized in that whether to switch to the payment mode for the online payment processing associated with the terminal 180.

According to an exemplary embodiment of the present invention, the mode checking unit 120 may operate in a predetermined initial mode to at least one home banking mode (or additional mode) of the home banking terminal 100 in association with the interface output unit 110. Service mode), it is preferable to check whether the switch to the payment mode for the online payment processing associated with the client terminal 180.

According to another exemplary embodiment of the present invention, the mode checking unit 120 receives the payment amount information and the affiliated store information from a predetermined client terminal 180 through the information receiving unit 115, and the home banking terminal 100. It is preferable to check whether the operation mode of the switch from the predetermined initial mode to at least one home banking mode (or additional service mode) to the payment mode for the online payment processing associated with the client terminal 180.

If the check result is that the operation mode of the home banking terminal 100 is confirmed as the payment mode for the online payment processing associated with the client terminal 180, the interface output unit 110 is the screen output unit 160 And a user interface for requesting to read a predetermined customer card 199 to the card reader unit 170 in correspondence with the card information input unit 125 in association with the card reader unit 170. Characterized by the predetermined card information from a predetermined customer card (199), the card information input step is preferably authenticated through the banking authentication module (179).

According to an embodiment of the present invention, the card information for the online payment processing associated with the client terminal 180 may be a predetermined card number (eg, a credit card) to be used for the online payment processing associated with the client terminal 180. Number, check card number, debit card number, etc.), card company information, expiration date information (some may be omitted), and cardholder information.

Those skilled in the art to which the present invention pertains, the card information input unit 125 is connected to the card reader unit 170 from the customer card (199) associated with the client terminal 180 online You will be familiar with the technical features of reading card information for payment processing (for example, if the customer card 199 is an IC card, a PIN procedure for authenticating the validity of the IC card). Is omitted for convenience.

Referring to FIG. 1, the home banking terminal 100 may read the card information read from the customer card 199 through the card information input unit 125 and the key information input through the key input unit 165. A predetermined payment approval including payment amount information, merchant information input through the banking authentication module 179 (or the key input unit 165), and at least one terminal specific information stored in the memory unit 155. A relay server on a communication network through a full text generation unit 130 for generating a full text request, a cryptographic processing unit 135 for encrypting the generated payment approval request full text, and the full text of the payment approval request through the communication processing unit 177 ( Receive the full text of the payment approval result including the payment processing details corresponding to the full payment approval request from the relay server 190 on the communication network through the transmission unit 140 and the communication processing unit 177 to transmit to the 190). The professional receiving unit 145 and the payment processing history information included in the received payment approval result full text are stored in the payment processing history storage area provided in the memory unit 155, and the screen output unit 160 And a professional processing unit 150 for outputting the payment processing details in association with each other. When the payment approval result message received through the professional receiving unit 145 is encrypted, the encryption processing unit 135 Characterized by decrypting the encrypted payment approval result full text, it is preferable that each step is authenticated by the banking authentication module 179 for the full text generation and full text transmission and reception procedures.

The full text generation unit 130 reads and inputs the card information read from the customer card 199 through the card information input unit 125 for online payment settlement processing associated with the client terminal 180 and the key. And the payment amount information input through the input unit 165, the merchant information input through the banking authentication module 179 (or the key input unit 165) and the memory unit 155. Characterized by generating a predetermined payment approval request full text containing at least one or more terminal-specific information stored, it is preferable that the step of generating a payment approval request full text is authenticated through the banking authentication module 179.

Here, the payment approval request specialized structure preferably includes a structure in which the relay server 190 can recognize the payment approval request full text.

When the payment approval request full text is generated through the full text generation unit 130, the cryptographic processing unit 135 includes at least the full text of the payment approval request including the card information, the payment amount information, the merchant information, and the terminal specific information. It is characterized by encrypting with one or more encryption methods, the present invention is not limited by a specific encryption method (or encryption algorithm).

The specialized transmission unit 140 transmits the full payment approval request message to the relay server 190 on the communication network through the communication processing unit 177 (for example, the network communication unit), and transmits the payment approval request message. It is preferable to authenticate through the banking authentication module 179.

Thereafter, the relay server 190 relays the card information, the payment amount information, and the merchant information included in the full payment approval request message to a card company server 195 corresponding to the card information through a predetermined dedicated network. After performing a predetermined payment processing procedure for the online payment processing associated with the client terminal 180, predetermined payment approval information (e.g., payment approval number) or payment error information (e.g., from the card company server 195) When a payment processing history including any one of payment error codes) is received, a predetermined payment approval result message including the payment processing history is generated and transmitted to the home banking terminal 100 through the communication network.

After the payment approval request message is transmitted to the relay server 190 through the message transmission unit 140, the message receiving unit 145 is transmitted from the relay server 190 on the communication network through the communication processing unit 177. And periodically (or in response to a full text reception event of the communication processor 177) receive a payment approval result text including a predetermined payment processing history corresponding to the full text of the payment approval request. Receiving the result of the approval is preferably authenticated through the banking authentication module 179.

When the received payment approval result full text is encrypted by a predetermined encryption method, the encryption processing unit 135, the full text receiving unit 145 converts the encrypted payment approval result full text into a predetermined decryption method corresponding to the encryption method. It is characterized by decoding, and the present invention is not limited by a specific decoding method (or decoding algorithm).

When the payment approval result full text is received through the full text receiver 145, the full text processing unit 150 extracts the payment processing detail information from the full text of the payment approval result and stores the extracted payment processing detail information in the memory unit. Characterized in the payment processing history storage area provided at 155, characterized in that the payment processing history storage step is preferably authenticated through the banking authentication module 179.

According to the exemplary embodiment of the present invention, when the specialized processing unit 150 includes predetermined payment approval information in the payment processing history information, the payment processing history information may be selectively provided in the memory unit 155. It is preferable to store in the processing history storage area.

In addition, the professional processing unit 150 outputs the payment processing history information extracted from the payment approval result full text in connection with the screen output unit 160, the payment processing history output step is the banking authentication It is desirable to authenticate through module 179.

2 is a diagram illustrating an external appearance of a home banking terminal 100 according to an exemplary embodiment of the present invention.

In more detail, FIG. 2 shows a home banking terminal 100 shown in FIG. 1, which has a predetermined voice call function and is a card reader that reads at least one customer card 199. When the banking authentication module 179 is configured to include a predetermined banking authentication IC card, the appearance of the home banking terminal 100 for online payment processing associated with the client terminal 180 is illustrated. Those skilled in the art to which the present invention pertains may refer to and / or modify this figure 2 to infer various implementation methods for the appearance of the home banking terminal 100, but the present invention is inferred It includes all implementation methods, and is not limited to the implementation method shown in FIG.

For example, a person having ordinary knowledge in the art to which the present invention pertains may refer to and / or modify the drawing 2 to read the home banking terminal 100 or the customer card 199 without the voice call function. The card reader has a home banking terminal 100 including a contact / contactless IC card in addition to the MS card reader, or the banking authentication module 179 includes a predetermined banking authentication module 179 chip in addition to the banking authentication IC card. It can be inferred the implementation method of the home banking terminal 100, but the present invention includes all the inferred implementation method, it is not limited to the implementation method shown in FIG.

3 is a diagram illustrating a configuration of an internet shopping system for card payment using a home banking terminal 345 according to an exemplary embodiment of the present invention.

In more detail, Figure 3 is connected to a predetermined shopping mall server 300 from a predetermined client terminal 340 connected to a predetermined communication network through a predetermined communication device to purchase at least one product (or service), and then If the payment request for the purchase price is requested, the shopping mall server 300 transmits predetermined payment amount information and affiliate store information for processing the payment from the client terminal 340 to the client terminal 340. The Internet shopping system is configured to provide the payment information and merchant information to the home banking terminal 345 shown in FIG. 1 through a predetermined cable communication (or short-range wireless communication). If you have the knowledge of the Internet shopping for the card payment using the home banking terminal 345 by referring to and / or modified in Figure 3 Would be able to infer a variety of exemplary methods for the system configuration, the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 3.

Referring to FIG. 3, an internet shopping system for card payment using the home banking terminal 345 may include a predetermined client terminal 340 provided in each home and a predetermined communication device (eg, a communication modem). When the home banking terminal 345 connected to the same communication network as the client terminal 340 and the client terminal 340 purchase at least one product (or service), the client terminal 340 processes the payment. And a shopping mall server 300 for transmitting predetermined payment amount information and affiliated store information. When the home banking terminal 345 generates and transmits a predetermined payment approval request message, the payment approval request is performed. Receiving the full text, and the card company server corresponding to the card information, the card information, payment amount information and merchant information included in the full payment approval request (3) And a relay server 325 for relay transmission to 35 and at least one card company server 335 corresponding to the card information.

The client terminal 340 on the internet shopping system for card payment using the home banking terminal 345 connects to the shopping mall server 300 and stores at least one product (or service) sold by the shopping mall server 300. A generic term for all terminal devices to be purchased, comprising a network communication function for accessing the communication network and at least one web browser, and a fixed terminal such as a desktop computer having the network communication function and a web browser. Or a semi-fixed terminal such as a notebook, or a portable terminal capable of carrying / moving.

According to an embodiment of the present invention, the client terminal 340 preferably comprises at least one wired terminal connected to a Transmission Control Protocol / Internet Protocol (TCP / IP) based wired communication network. It is preferable to connect a communication channel for purchasing at least one product (or service) with the shopping mall server 300 according to a Hyper-Text Transfer Protocol (HTTP) compatible protocol.

According to another exemplary embodiment of the present invention, the client terminal 340 may be a Code Division Multiple Access (CDMA) / Wide-CDMA (WCDMA) based wireless communication network, an IEEE 802.11x based wireless communication network, or an IEEE 802.16x based wireless communication network. At least one wireless terminal connected to any one of the wireless communication network is preferably made, and according to the HTTP (Hyper-Text Transfer Protocol) compatible protocol provided in the communication network server 300 and at least one product ( Or service) it is desirable to connect a communication channel for purchase.

After the shopping mall server 300 and the communication channel for purchasing the at least one product (or service) are connected, the client terminal 340 is connected to the at least one product from the shopping mall server 300 through the communication channel. Or a Hyper-Text Markup Language (HTML) compatible web document (eg, * .html, * .htm, * .asp. * .Jsp, * .xml, * .wml, etc.) for purchase. The received web document is output through a web browser provided in the client terminal 340.

If one of ordinary skill in the art to which the present invention pertains, the client terminal 340 connects the shopping mall server 300 and a communication channel for purchasing the at least one product (or service), and the shopping mall server Since it will be familiar with the technical features of receiving the web document for purchasing the at least one product (or service) from the 300 and output through the web browser, a detailed description thereof will be omitted for convenience.

The home banking terminal 345 on the Internet shopping system for card payment using the home banking terminal 345 is characterized in that it comprises at least one or more functional configuration shown in Figure 1 and the appearance shown in Figure 2. Card information read from the customer card 350 through the predetermined card reader, payment amount information and merchant information received from the client terminal 340, and predetermined terminal unique information corresponding to the home banking terminal 345; Generating a predetermined payment approval request message including at least one message and transmitting the predetermined payment approval request message to the relay server 325 through the communication network, wherein the payment approval request message includes at least one encryption method (or an encryption algorithm). Is preferably encrypted.

In addition, the shopping mall server 300 on the internet shopping system for card payment using the home banking terminal 345 is a generic term for a web server selling at least one product (or service) to the client terminal 340. It characterized in that it comprises at least one server, paid content providing server and the like.

Referring to FIG. 3, the shopping mall server 300 connects and manages a predetermined communication channel with the client terminal 340 through the communication network to provide a web interface corresponding to the client terminal 340 and the communication network. It characterized in that it comprises an interface unit 305, whereby the shopping mall server 300 has a function of a web server that is connected to the client terminal 340 through a wired communication network and / or a wireless communication network. .

According to an exemplary embodiment of the present invention, when the client terminal 340 is a wired terminal to which a communication channel is connected through a TCP / IP-based wired communication network, the interface unit 305 may connect the client terminal 340 with HTTP ( Connect a predetermined communication channel based on a Hyper-Text Transfer Protocol protocol, and transmit and output a shopping interface screen in the form of a HTML (Hyper-Text Markup Language) compatible document to the client terminal 340 through the communication channel. It is preferable to perform a function of receiving and processing predetermined purchase request information input (or selected) through the shopping interface screen from the client terminal 340.

According to another exemplary embodiment of the present invention, when the client terminal 340 is a wireless terminal to which a communication channel is connected through a CDMA based wireless communication network, the interface unit 305 is connected to the client terminal 340 and a WAP (Wireless). Connect a predetermined communication channel based on an application protocol and / or a mobile explorer (ME) protocol, and shopping in the form of a wireless markup language (WML) and / or HTML compatible document to the client terminal 340 through the communication channel. It is preferable to perform a function of transmitting and outputting an interface screen and receiving and processing predetermined purchase request information corresponding to the shopping interface screen from the client terminal 340.

According to another exemplary embodiment of the present invention, when the client terminal 340 is a wireless terminal to which a communication channel is connected through an IEEE 802.16x based wireless communication network, the interface unit 305 is connected to the client terminal 340. A predetermined communication channel is connected based on a wireless protocol corresponding to the IEEE 802.16x standard, a predetermined shopping interface screen is transmitted to the client terminal 340 through the communication channel, and outputted, and the client terminal 340 It is preferable to perform a function of receiving and processing predetermined purchase request information corresponding to the shopping interface screen from, and / or the client terminal 340 is a wireless communication channel is connected through an IEEE 802.11x based wireless communication network In the case of a terminal, the interface unit 305 is a wireless program corresponding to the client terminal 340 and the IEEE 802.11x standard. A predetermined communication channel is connected based on a protocol, a predetermined shopping interface screen is transmitted to the client terminal 340 through the communication channel, and is output. The predetermined shopping interface screen corresponding to the shopping interface screen is transmitted from the client terminal 340. It is preferable to perform the function of receiving and processing purchase request information of.

Referring to FIG. 3, when the predetermined client terminal 340 accesses the shopping mall server 300 through the interface unit 305, the shopping mall server 300 interoperates with the interface unit 305. An interface providing unit 310 for generating (or extracting) a predetermined shopping interface screen for inputting (or selecting) and transmitting predetermined purchase request information from the terminal 340, and interworking with the interface unit 305. And a shopping processor 315 which receives the purchase request information transmitted from the client terminal 340 through the shopping interface screen and transmits the information, and performs a product (or service) selling procedure corresponding thereto. Characterized in that made.

The interface providing unit 310 has a functional configuration (eg, client terminal) provided in the client terminal 340 when a predetermined client terminal 340 is connected to the shopping mall server 300 through the interface unit 305. Generate a predetermined shopping interface screen for inputting (or selecting) predetermined purchase request information to the shopping mall server 300 through the communication network, and / or The shopping interface screen extracted from a predetermined database (not shown) and linked with the interface unit 305 is provided to the client terminal 340 through the communication network.

Thereafter, the client terminal 340 inputs (or selects) predetermined purchase request information based on the shopping interface screen, and when it is confirmed that the purchase request information is input (or selected), the client terminal 340 Transmits the input (or selection) purchase request information to the shopping mall server 300 through the communication network.

Those skilled in the art to which the present invention pertains may input (or select) the purchase request information through at least one form form included in the shopping interface screen in the client terminal 340. Technical features and technical features for transmitting the input (or selected) purchase request information to the shopping mall server 300 through a communication protocol provided by the communication network will be understood. Therefore, a detailed description thereof will be omitted for convenience. .

When the shopping processor 315 inputs (or selects) predetermined purchase request information through the shopping interface screen from the client terminal 340 and transmits the information through the communication network, the shopping processor 315 interworks with the interface unit 305 to make the purchase. Characterized in that the request information is received, through the home banking terminal 345 shown in Figure 1 generates a predetermined amount of payment information and merchant information for the online payment processing associated with the telecommunications company (or a predetermined database ( Extraction from).

Referring to FIG. 3, the shopping mall server 300 transmits the payment amount information and the affiliated store information to the client terminal 340 through the communication network for the online payment settlement process associated with the communication company. It is characterized by comprising a).

The information transmitter 320 transmits the payment amount information and the affiliated store information to the client terminal 340 corresponding to the terminal address information through the communication network, and the client terminal 340 is the shopping mall. The payment information and merchant information received from the server 300 is provided to the home banking terminal 345 shown in Figure 1 through a predetermined cable communication (or short-range wireless communication), the home banking terminal ( 345 is characterized in that the function configuration for receiving the payment information and merchant information from the client terminal 340 through the cable communication (or short-range wireless communication).

4 is a diagram illustrating an internet shopping process for card payment using a home banking terminal 345 according to an exemplary embodiment of the present invention.

In more detail, Figure 4 is connected to a predetermined shopping mall server 300 from a predetermined client terminal 340 connected to a predetermined communication network through a predetermined communication device to purchase at least one product (or service), and then When the payment request for the purchase price is requested, predetermined payment amount information and merchant information for processing the payment are transmitted from the shopping mall server 300 on the Internet shopping system shown in FIG. 3 to the client terminal 340. In this case, the client terminal 340 provides the payment amount information and the merchant information to the home banking terminal 345 shown in FIG. 1 through a predetermined cable communication (or short-range wireless communication). Those skilled in the art to which the present invention belongs, the card payment using the home banking terminal 345 by referring to and / or modified in Figure 4 Various implementation methods for the Internet shopping process may be inferred, but the present invention includes all the implementation methods inferred, and the technical features are not limited to the implementation method shown in FIG.

Referring to FIG. 4, the client terminal 340 on the Internet shopping system illustrated in FIG. 3 accesses the shopping mall server 300 on the Internet shopping system illustrated in FIG. A predetermined communication channel for purchasing a service) is connected, and an internet shopping process for purchasing at least one product (or service) through at least one shopping interface screen provided by the shopping mall server 300 is performed (400).

Those skilled in the art to which the present invention pertains know the technical features of the internet shopping process of purchasing at least one product (or service) through various shopping interface screens provided by the shopping mall server 300. Since it will be, a detailed description thereof will be omitted for convenience.

If the client terminal 340 purchases at least one product (or service) during the Internet shopping (405), the client terminal 340 inputs (or selects) predetermined purchase request information to establish the communication channel. The transmission is transmitted to the shopping mall server 300 (410).

If one of ordinary skill in the art to which the present invention belongs, information configuration for the purchase request information for purchasing at least one product (or service) based on various shopping interface screens provided by the shopping mall server 300 Since it will be familiar with, detailed description thereof will be omitted for convenience.

Thereafter, the shopping mall server 300 generates (or extracts) predetermined payment amount information and affiliate store information corresponding to the purchase request information (415), and generates (or extracts) the payment to the client terminal 340. The amount of money information and merchant information is transmitted (420).

Thereafter, the client terminal 340 determines whether a predetermined communication session is connected to the home banking terminal 345 shown in FIG. 1 through a predetermined cable communication (or short-range wireless communication) (425).

If the home banking terminal 345 and the predetermined communication session connection is not confirmed (430), the client terminal 340 processes the payment for the payment amount according to a conventional online payment procedure (435). ).

On the other hand, if the home banking terminal 345 and the predetermined communication session connection is confirmed (430), the client terminal 340 is the home banking terminal through a communication session corresponding to the cable communication (or short-range wireless communication) ( In operation 345, the payment amount information and the affiliated store information are transmitted.

5 is a diagram illustrating a card payment system configuration using a home banking terminal 595 according to an exemplary embodiment of the present invention.

In more detail, when FIG. 5 receives predetermined payment amount information and merchant information from the client terminal 593 shown in FIG. 3 to the home banking terminal 595 shown in FIG. 1, the home banking terminal 595 When the predetermined payment approval request message including the card information read from the predetermined customer card 598, the payment amount information, the merchant information, and the predetermined terminal specific information is generated and transmitted to the relay server 590, the relay server As a card payment system for processing a corresponding card payment in the server 590, those skilled in the art to which the present invention pertains, the home banking terminal (see FIG. It will be able to infer various implementation methods for the card payment system configuration using 595), but the present invention includes all the implementation methods inferred, this figure The technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 5, the card payment system using the home banking terminal 595 uses a predetermined payment (or short-range wireless communication) from a client terminal 593 on the Internet shopping system shown in FIG. Receives a home banking terminal (595) for receiving money information and merchant information, and a payment approval request text generated and transmitted by the home banking terminal (595), and the card information and payment amount information and merchants included in the payment approval request text And a relay server 590 for relaying information to the card company server 545 corresponding to the card information, and at least one card company server 545 corresponding to the card information. And a shopping mall server 590 for transmitting predetermined payment amount information and merchant information for processing the payment. It is characterized by losing.

The home banking terminal 595 on the card payment system using the home banking terminal 595 includes at least one functional configuration shown in FIG. 1 and an external form shown in FIG. And at least one card information read from the customer card 598 through a reader, payment amount information and merchant information received from a predetermined client server, and predetermined terminal specific information corresponding to the home banking terminal 595. Characterized in that a predetermined payment approval request message is generated and transmitted to the relay server 590 through the communication network, wherein the payment approval request message is preferably encrypted through at least one encryption method (or encryption algorithm). .

In addition, the relay server 590 on the card payment system using the home banking terminal 595 is connected to the home banking terminal 595 through the communication network, and the payment approval request generated and transmitted by the home banking terminal 595. Receiving the full text, and the card information, payment amount information and merchant information contained in the payment approval request full text is relayed to the card company server 545 corresponding to the card information.

In addition, the relay server 590 is connected to the card company server 545 through a predetermined dedicated network, the card company server 545 the card information, payment amount information and merchant information contained in the full payment approval request request After relaying to the network, the card company server 545 receives predetermined payment processing history information corresponding to the payment approval result, and generates a predetermined payment approval result message including the payment processing history to generate the communication network. Characterized in that the transmission to the home banking terminal 595 through.

In addition, the card company server 545 on the card payment system using the home banking terminal (595), characterized in that it comprises at least one server provided in the card company to process the payment approval for the customer card 598. After receiving the card information, the payment amount and the affiliated store information from the home banking terminal 595, the payment amount is processed through the customer card 598.

Those skilled in the art to which the present invention pertains, the technical features of the home banking terminal 595 and the technical features of the conventional card company server 545 and connecting the home banking terminal 595 and the card company server 545 Since you will be familiar with the technical features of the communication network, a detailed description thereof will be omitted for convenience.

According to the method of the present invention, the card company server 545 is the customer information that issued the customer card 598, card information corresponding to the customer card 598 issued to the customer and the card attribute information and A predetermined card information D / B 580 for storing and processing the card limit information corresponding to the customer card 598 or interworking with a predetermined DBMS operating the card information D / B 580. Or, it is preferable to link with a DB server (not shown) provided with the card information D / B (580).

The customer information includes personal information (eg, customer name, resident registration number, address, wireless terminal information (or mobile number), e-mail address, etc.) of the customer who has issued the customer card 598, and member information of the customer (eg , At least one member ID information).

The card information preferably includes a predetermined card number corresponding to the customer card 598 issued to the customer. The card issuer information (eg, card issuer number (or code)) and card type are included. Preferably, the information further includes information (eg, a card identification number (or code) and expiration date information (some may be omitted) for the customer card 598.

According to an embodiment of the present invention, the card information is preferably matched with predetermined payment means information corresponding to the customer card 598, the payment means is credit card payment means, check card payment means, debit card payment It is preferable to include at least one or more means, prepaid card payment means.

The card attribute information includes a payment attribute (eg, postpaid, debit, prepaid, etc.) for the customer card 598 issued to the customer, and a royalty including a mileage accumulation policy for the customer card 598. At least one attribute and at least one additional service attribute associated with the customer card 598 may be included.

The card limit information is a limit for approval of payment for a payment amount using the customer card 598 according to the payment means characteristic corresponding to the customer card 598 and / or the payment attribute of the customer card 598. It is preferable to include information for confirming the amount of money.

According to an exemplary embodiment of the present invention, when the payment means corresponding to the customer card 598 includes a credit card payment means (or postpaid payment attribute), the card limit information is set for the customer card 598. It is preferable that the predetermined credit limit amount information is included.

According to another exemplary embodiment of the present invention, the payment method corresponding to the customer card 598 includes a check card / debit card payment method (or a debit payment attribute associated with an account) associated with a predetermined account. The card limit information may include predetermined account information (or account balance information) associated with the customer card 598.

According to another exemplary embodiment of the present invention, when the payment means corresponding to the customer card 598 includes a prepaid card payment means (or prepaid payment attribute), the card limit information is the customer card 598. It is preferable that the predetermined charge amount information is pre-filled.

Referring to FIG. 5, the relay server 590 may include an interface unit 550 and 505 for connecting and managing a communication channel for transmission / reception of professional payments with at least one home banking terminal 595 through a predetermined communication network. A professional receiver 510 for receiving a payment approval request message including at least one of card information, payment amount information, merchant information, and terminal-specific information from the home banking terminal 595 in association with the interface units 550 and 505. And a professional transmission unit 515 for transmitting the full payment approval result including the predetermined payment processing details to the home banking terminal 595 in association with the interface unit 550 and 505. If the received payment approval request text is encrypted, the encrypted payment approval request text is decrypted or the payment approval result text transmitted to the home banking terminal 595 is transmitted. Characterized in that obtained by having a luxury encryption unit 520.

The home banking terminal 595 reads predetermined card information from the customer card 598 through a predetermined card reader, and includes a payment approval request message including the card information, payment amount information, merchant information, and the terminal specific information. After generating and transmitting through the communication network, the specialized receiving unit 510 is characterized in that for receiving the payment approval request full text in conjunction with the interface unit 550 (505).

If the home banking terminal 595 encrypts and transmits the payment approval request text, the encryption unit 520 uses at least one encryption method that uses the received payment approval request text for encryption in the home banking terminal 595 ( Or a decryption process (or decryption algorithm) corresponding to an encryption algorithm).

Those skilled in the art will be familiar with the various encryption schemes (or encryption algorithms) and the corresponding decryption schemes (or decryption algorithms) for the full payment approval request. Detailed description is omitted for convenience.

If the card company server 545 completes a payment approval procedure corresponding to the full payment approval request message and transmits a predetermined payment processing history, the full text transmission unit 515 is associated with the interface unit 550 and 505. The payment approval result is characterized in that the transmission to the home banking terminal (595).

According to an embodiment of the present invention, when the payment approval result is encrypted and transmitted to the home banking terminal 595, the encryption unit 520 may transmit the payment approval result full text to at least one encryption method (or an encryption algorithm). It is preferable to perform encryption.

Persons having ordinary knowledge in the technical field to which the present invention pertains are familiar with technical features for transmitting and receiving the payment approval request text and the payment approval result text through the communication network, and a detailed description thereof will be omitted for convenience.

Referring to FIG. 5, the relay server 590 reads card information included in the full payment approval request message received from the home banking terminal 595 and checks the card company server 545 corresponding to the card information. Information relay for relaying the card information, payment amount information and merchant information to the information checking unit 525 and the confirmed card company server 545, and receiving predetermined payment processing history information from the card company server 545. It is characterized by comprising a portion 530.

The card information included in the full payment approval request message includes predetermined bank identification number (BIN) information for identifying the card company that issued the customer card 598. The information checking unit 525 may include the BIN. The card company server 545 corresponding to the card information is identified based on the information.

When the card company server 545 corresponding to the card information is confirmed, the information relay unit 530 is included in the full payment approval request message through a dedicated network connecting the relay server 590 and the card company server 545. Card information, payment amount information and merchant information is characterized in that the relay transmission to the card company server 545 by substituting the communication protocol provided in the dedicated network.

If the card company server 545 processes the payment amount through the customer card 598 corresponding to the card information, predetermined payment processing history information including predetermined payment approval information (or payment error information). After generating and transmitting to the relay server 590, the information relay unit 530 receives the payment processing history information from the card company server 545, after which the payment processing history information is predetermined The payment approval result is included in the full text and transmitted to the home banking terminal 595.

Referring to FIG. 5, the relay server 590 includes predetermined payment approval information in the payment processing history information, and the full payment approval result including the payment processing history is effectively used as the home banking terminal 595. In the case of transmission, the information storage unit 575 and 535 for linking the card information, payment amount information, merchant information and terminal specific information are stored in a predetermined payment history D / B 540. Here, the card information, payment amount information, merchant information and terminal specific information is preferably performed the function of the electronic slip.

Referring to FIG. 5, the card company server 545 connects and manages a communication channel for transmitting and receiving payment related information with the relay server 590 through the dedicated network. An information receiving unit 555 for receiving card information, payment amount, and merchant information from the relay server 590 in connection with the interface unit 550 and 505, and the relay unit in connection with the interface unit 550 and 505. And an information transmitter 560 which transmits payment processing history information including predetermined payment approval information (or payment error information) to the server 590.

When the relay server 590 relays and transmits the card information, the payment amount, and the affiliated store information included in the full payment approval request message, the information receiving unit 555 is connected with the interface unit 550 and 505 to transmit the card information. Characterized in that the information and payment amount and merchant information.

If a payment approval procedure corresponding to the payment amount information is completed through the customer card 598 corresponding to the card information in the card company server 545 and a predetermined payment processing history is generated, the information transmission unit 560. In connection with the interface unit 550, 505 is characterized in that for transmitting the payment processing history information to the relay server (590).

Referring to FIG. 5, when the card information, the payment amount, and the affiliated store information are received from the relay server 590 through the information receiving unit 555, the card company server 545 receives the card information issued by the card company. A card information checking unit 565 or 525 for confirming that the received card information matches card information issued by the card company in association with the card information D / B 580 to be stored; and the card information is the card information. If the card information provided in the D / B 580 is matched, the customer card 598 may be compared with the card limit information associated with the card information in comparison with the card information D / B 580 and the payment amount. A predetermined payment including a payment approval processing unit 570 for processing payment approval of the payment amount through a payment processing result including any one of predetermined payment error information and payment approval information corresponding to the payment approval processing An information generation unit 573 for generating processing history information, and predetermined transaction history information, which is obtained by classifying payment processing history including predetermined payment approval information among the payment processing results, by date and time; And information storage units 575 and 535 to be stored in 585, and the generated payment processing history information is transmitted to the relay through the information transmission unit 560.

When the card information, the payment amount, and the merchant information are received from the relay server 590 through the information receiving unit 555, the card information checking unit 565 and 525 receive the card received from the relay server 590. Characterized in that the information matches the card information issued by the card company.

According to the exemplary embodiment of the present invention, the card information checking unit 565 and 525 use the card information included in the payment approval request text as a keyword to display card information stored in the card information D / B 580. By inquiring and searching, it is preferable to check whether the card information included in the full payment approval request is card information issued by the card company.

When the card information is matched with the card information provided in the card information D / B 580, the payment approval processing unit 570 is processed in association with the confirmed card information from the card information D / B 580 and stored. After confirming the card limit information for the customer card 598, and comparing the confirmed card limit information and the payment amount is characterized in that the approval processing of the payment amount through the customer card 598. .

According to an embodiment of the present invention, when the payment means corresponding to the confirmed card information comprises a credit card payment means (or postpaid payment attribute), the payment approval processing unit 570 is the card information D / B 580 confirms the predetermined credit limit amount information stored in association with the card information, and compares the confirmed credit limit amount information with the payment amount, thereby confirming the payment amount through the customer card 598. It is characterized by processing the payment approval.

According to another embodiment of the present invention, when the payment means corresponding to the confirmed card information comprises a check card / debit card payment means (or a debit payment attribute associated with the account) associated with a predetermined account, The payment approval processing unit 570 checks predetermined account information stored in association with the card information from the card information D / B 580 and stores the account balance in connection with a predetermined financial system in which the account is opened. After confirming, by comparing the confirmed account balance with the payment amount, the payment approval for the payment amount is processed through the customer card 598.

If the account balance information stored in association with the card information is directly stored in the card information D / B 580, the payment approval processing unit 570 may receive the card information from the card information D / B 580. After confirming the account balance stored and stored in association, it is possible to process payment approval for the payment amount through the customer card 598 by comparing the confirmed account balance with the payment amount.

According to another embodiment of the present invention, when the payment means corresponding to the confirmed card information comprises a prepaid card payment means (or prepaid payment attribute), the payment approval processing unit 570 is the card information D Confirms predetermined charge amount information stored in association with the card information from / B 580 and compares the confirmed charge amount information with the payment amount, thereby confirming the payment amount through the customer card 598; It is characterized by processing the payment approval.

The payment approval processing unit 570 processes predetermined payment error information (eg, payment error code) or payment approval information (eg, payment approval) in the process of processing payment approval for the payment amount through the customer card 598. Number) to generate a payment processing result including any one.

When the payment approval processing unit 570 generates a payment processing result including any one of the payment error information (eg, payment error code) or payment approval information (eg, payment approval number), the information generation unit ( 573 may generate predetermined payment processing history information including the card information, payment amount information, merchant information, and payment processing result. The information transmitting unit 560 may include the interface unit 550 and 505. The payment processing history information is linked to the relay server 590.

When predetermined payment processing history information including the payment approval information (eg, payment approval number) is generated by the payment approval processing unit 570, the information storage unit 575 and 535 may generate the payment processing history information ( For example, the predetermined transaction processing information including the payment date and time information is further generated in the predetermined payment processing history including the card information, payment amount information, merchant information, and payment approval information). 585).

FIG. 6 is a diagram illustrating an operation of a home banking terminal 595 generating a full payment approval request message according to an embodiment of the present invention.

In more detail, in FIG. 6, when predetermined payment amount information and merchant information are received from the client terminal 593 shown in FIG. 3 to the home banking terminal 595 shown in FIG. 1, the home banking terminal 595 A predetermined payment approval request text including card information read from the customer card 598, the received payment amount information, merchant information, and the terminal specific information for online payment processing associated with the client terminal 593; As a process for generating, the person skilled in the art to which the present invention pertains, the operation of the home banking terminal 595 for generating the full payment approval request by referring to and / or modifying the present Figure 6 Various implementation methods may be inferred, but the present invention includes all the implementation methods inferred, and only the implementation method shown in FIG. This technical feature is not limited.

Hereinafter, in FIG. 6, the home banking terminal 595 illustrated in FIG. 1 is referred to as a “terminal” for convenience.

Referring to FIG. 6, the terminal may include a user interface for selecting at least one or more home banking services (or additional services) through a predetermined screen output means, or an online payment service associated with the client terminal 593. Outputs an interface screen including a user interface (600) and periodically receives predetermined payment amount information and merchant information from a client terminal 593 shown in FIG. 3 through predetermined cable communication (or short-range wireless communication). Check (605).

If predetermined payment amount information and merchant information are not received from the client terminal 593 (610), the terminal is at least one according to at least one operation mode corresponding to the at least one home banking service (or additional service). The above-described home banking service (or additional service) is processed (615).

Those skilled in the art to which the present invention pertains may infer various home banking service (or additional service) processes through the terminal, and thus a detailed description thereof will be omitted.

On the other hand, when predetermined payment amount information and merchant information are received from the client terminal 593 through a predetermined cable communication (or short-range wireless communication) (610), the terminal determines the operation mode of the terminal to the client terminal (593). Switch to (or select) the payment mode for the online payment processing associated with (620).

According to another exemplary embodiment of the present invention, an operation mode of the terminal through the interface screen before predetermined payment amount information and merchant information is received from the client terminal 593 through a predetermined cable communication (or short-range wireless communication). If is already switched (or selected) to the payment mode, the switch to (or select) the payment mode may be omitted.

Thereafter, the terminal requests to read predetermined card information from the customer card 598 through the card reader and checks whether the card information is read and input through the card reader (625).

If the card information is read and input (630), the terminal extracts and inputs predetermined terminal unique information from the memory unit (635), and then the card information, payment amount information, merchant information, and terminal unique information. In operation 640, a payment approval request text including at least one or more full texts is generated.

7 is a diagram illustrating an operation of a home banking terminal 595 for transmitting and receiving a payment related message to a relay server 590 according to an embodiment of the present invention.

In more detail, when the predetermined payment approval request text is generated through the process shown in FIG. 6, the drawing 7 encrypts the generated payment approval request text in the home banking terminal 595 shown in FIG. After the transmission to the relay server 590 on the card payment system shown in 5, the process for receiving the full payment approval result including the predetermined payment processing history from the relay server 590, the present invention Those skilled in the art will be able to infer various implementation methods for the operation of the home banking terminal 595 that transmits and receives a payment related message to the relay server 590 by referring to and / or modifying the drawing 7. As will be appreciated, the present invention includes all implementation methods inferred, and the technical features are not limited only to the implementation method illustrated in FIG.

For example, in FIG. 7, the home banking terminal 595 encrypts and transmits the payment approval request message in order to easily explain the process of transmitting and receiving the payment related message. Although illustrated as being received and decrypted, the encryption / decryption process may be omitted (or modified) according to the intention of those skilled in the art, and it will be apparent that the present invention is not limited thereto.

Hereinafter, in FIG. 7, the home banking terminal 595 illustrated in FIG. 1 is referred to as a “terminal” for convenience.

Referring to FIG. 7, when a predetermined payment approval request message is generated through the process illustrated in FIG. 6, the terminal generates at least one encryption method (or encryption) of the generated payment approval request message through the banking authentication module. Algorithm) (700).

According to an exemplary embodiment of the present invention, when a banking authentication IC card (or banking authentication module chip) is provided in the banking authentication module provided in the terminal, the terminal may be configured as the banking authentication IC card (or banking authentication module chip). It is preferable to encrypt the full text of the payment approval request through at least one encryption key provided in the).

According to another exemplary embodiment of the present invention, when a predetermined merchant side banking authentication IC card is inserted (or interlocked) into a banking authentication module provided in the terminal, the terminal includes at least the banking authentication IC card of the merchant side. It is preferable to encrypt the full text of the payment approval request by using one or more encryption keys.

If the payment approval request message is encrypted (705), the terminal transmits the payment approval request message to the relay server (590) via the communication network (710), and then the communication network from the relay server (590). Through the payment approval result including the predetermined payment processing history, the full text is checked (715).

If the check result is received, the payment approval result full text (720), the terminal checks whether or not the decoding process for the payment approval result full text (725).

If the payment approval result full text is decoded (730), the terminal decodes the data through at least one decoding method (or decryption algorithm) corresponding to the payment approval result full text (735).

If the full text of the payment approval result is decoded (740), the terminal reads the payment processing details included in the full text of the payment approval result and checks whether it includes predetermined payment approval information (745).

If the payment processing history does not include the payment approval information (eg, if the payment processing history includes at least one payment error information) (750), the terminal outputs the predetermined payment error information screen Thereafter, the online payment processing associated with the client terminal 593 is terminated.

On the other hand, if the payment approval information includes the payment approval information (750), the terminal outputs the payment approval information and then stores the payment processing details in the payment processing history storage area provided in the memory unit. (760).

8 is a diagram illustrating the operation of the relay server 590 according to the embodiment of the present invention.

More specifically, FIG. 8 receives a predetermined payment approval request message from the home banking terminal 595 shown in FIG. 1 in the relay server 590 on the card payment system shown in FIG. Relaying), receiving a predetermined payment processing history from the card company server 545, and generating a full payment approval result including the payment processing history and transmitting it to the home banking terminal 595. As one of ordinary skill in the art to which the present invention pertains, various implementation methods for the operation of the relay server 590 may be inferred by referring to and / or modifying the drawing 8. It is made to include all the inferred implementation method, the technical features are not limited only to the implementation method shown in FIG.

For example, in FIG. 8, when the home banking terminal 595 encrypts and transmits the full payment approval request message in order to easily explain the operation of the relay server 590, the encrypted payment approval is transmitted from the relay server 590. Although the request message is illustrated as being decrypted and the relay server 590 is encrypted and transmitted to the home banking terminal 595 by encrypting the payment approval result, the encryption / decryption process is intended to be performed by those skilled in the art. It may be omitted (or modified) accordingly, it will be apparent that the present invention is not limited thereto.

Hereinafter, the home banking terminal 595 shown in FIG. 1 is referred to as "terminal" in FIG. 8, and the relay server 590 on the card payment system shown in FIG. 5 is referred to as "server" for convenience.

Referring to FIG. 8, when the terminal illustrated in FIG. 1 requests connection of at least one communication channel for transmitting / receiving a payment related professional message to the server through the process illustrated in FIG. 7, the server may establish at least one connection with the terminal. The communication channel for transmitting and receiving the above payment related message is connected (800), and a predetermined payment approval request message is received from the terminal (805).

If a predetermined payment approval request text is received from the terminal (810), the server decrypts the received payment approval request text (810), and if the payment approval request text is decrypted (820), the payment approval The card information included in the request message is read to check the predetermined card company server 545 corresponding to the card information (825).

According to an embodiment of the present invention, the card information included in the full payment approval request message includes predetermined bank identification number (BIN) information for identifying a card company that issued the customer card 598, wherein the server It is preferable to check the card company server 545 corresponding to the card information based on the BIN information.

If the card company server 545 corresponding to the card information is confirmed (830), the server and the card information and payment amount information included in the full payment approval request to the card company server 545 through a predetermined network; The affiliated store information is relayed and transmitted (835), and it is checked whether predetermined payment processing detail information is received from the card company server 545 (840).

If payment processing history information is received from the card company server 545 (845), the server generates a predetermined payment approval result message including the payment processing history and transmits it to the terminal (850).

If the full payment approval result is normally transmitted to the terminal, the server reads the payment processing details and checks whether the payment processing details include predetermined payment approval information (855).

If it is confirmed that the payment processing details include the predetermined payment approval information (860), the server links the card information, the payment amount information, the affiliated store information, and the terminal specific information, and the predetermined payment history D. Stored in / B (540) (865), wherein the card information, payment amount information, merchant information and the terminal-specific information preferably comprises the electronic slip information configuration for the card payment processing.

9 is a diagram illustrating a method for encrypting and transmitting a transmission approval request text in a symmetric key (or secret key) method in a home banking terminal according to an embodiment of the present invention.

In more detail, Figure 9 is a method for encrypting and transmitting the full payment approval request in a symmetric key (or secret key) method in a home banking terminal equipped with an encryption function as shown in Figure 1, the present invention If one of ordinary skill in the art can refer to and / or modify this figure 9, various implementation methods for encrypting the full payment approval request message in a symmetric key (or secret key) manner in a home banking terminal on the communication network can be inferred. It will be appreciated that the present invention encompasses all of the inferred implementation methods and is not limited to the implementation method shown in FIG.

In this figure 9 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the banking authentication module 930 provided in the home banking terminal, the banking authentication module 930 is the symmetrical At least one banking authentication IC card having a key (or secret key), or a banking authentication module 930 chip is preferably included.

According to another embodiment of the present invention, the symmetric key (or secret key) is an interface that is stored in the memory unit provided in the home banking terminal in addition to the banking authentication module 930, and / or provided from the relay server to the home banking terminal. It can be included in the screen and / or embedded in the communication program to communicate with the relay server on the home banking terminal, it is not limited by the anti-invention by this.

Referring to FIG. 9, if a predetermined payment approval request message including predetermined card information, payment amount information, merchant information, and terminal specific information is generated in the full text generation unit 935 of the home banking terminal, the cryptographic processing unit generates the full text. If the payment authorization request is provided, the encryption processing unit 925 is a predetermined symmetry for encrypting the payment approval request message from the banking authentication module 930 provided in the home banking terminal. A key (or secret key) is read (905), and the full text of the payment approval request is encrypted (910) using the read symmetric key (or secret key).

Herein, the encryption function of the encryption processing unit 925 is called E (Encryption), the symmetric key (or secret key) is k (key), the payment approval request full text P (Plaintext), and the symmetric key (or If the entire payment approval request encrypted with a secret key) is C (Ciphertext), the encryption function of the encryption processing unit 925 may be expressed by a formula such as "Ek (P) = C".

According to the embodiment of the present invention, the encryption processing unit 925 encrypts the payment approval request full text through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES, Skipjack It is preferable to include at least one or more of an International Data Encryption Algorithm (IDEA), and various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

When the payment approval request message is encrypted through the symmetric key (or the secret key) as described above, the specialized transmission unit 920 transmits the encrypted payment approval request message to the relay server through a communication protocol defined on the communication network. Transmit (915).

FIG. 10 is a diagram illustrating a method of decrypting a payment approval request message encrypted and received at a relay server using a symmetric key (or secret key) method according to an embodiment of the present invention.

In more detail, FIG. 10 is an embodiment in which the payment approval request message encrypted and received from a home banking terminal equipped with an encryption function as shown in FIG. 1 is decrypted by a symmetric key (or secret key) method in a relay server as shown in FIG. As to a method, if one of ordinary skill in the art to which the present invention pertains, the symmetric key (or secret key) may be referred to the full text of the encrypted payment approval request at the home banking terminal on the communication network by referring to and / or modifying the drawing. Various embodiments of decoding may be inferred by the method, but the present invention includes all the above inferred implementation methods and is not limited to the implementation method shown in FIG.

In this figure 10 according to the embodiment of the present invention, the symmetric key (or secret key) is preferably read from the security module (not shown) provided in the relay server, the security module is interlocked with the relay server It is preferably stored in a predetermined database (not shown), and the present invention is not limited thereby.

Referring to FIG. 10, the full-text receiving unit 1030 of the relay server receives the encrypted payment approval request message through the communication network and provides the encrypted payment approval request message to the encryption unit 1025 (1000). It is preferably received via a communication protocol stack defined in the communication network.

Thereafter, the encryption unit 1025 extracts a predetermined symmetric key (or secret key) for decrypting the encrypted payment approval request message from the security module provided in the relay server (1005), and extracts the extracted symmetric key. (Or 1010) the encrypted payment authorization request full text is decrypted through the secret key.

Here, the decryption function of the encryption unit 1025 is referred to as D (Decryption), the full text of the payment approval request encrypted with the symmetric key (or secret key) k (key) and the symmetric key (or secret key). (Ciphertext) and the decrypted payment approval request full text is P (Plaintext), the function of the encryption unit 1025 decrypting the encrypted payment approval request full text is "Dk = P, or Dk (Ek (P )) = P ".

According to the embodiment of the present invention, the encryption unit 1025 decrypts the encrypted payment authorization request full message through the symmetric key (or secret key), SEED, DES (Data Encryption Standard), Triple-DES Preferably, at least one of Skipjack, International Data Encryption Algorithm (IDEA), and various other decryption algorithms may be used, but the decryption algorithm is matched with the encryption algorithm used in the home banking terminal. The present invention is not limited by the specific decoding algorithm.

When the payment approval request text encrypted through the symmetric key (or secret key) is decrypted as described above, the encryption unit 1025 provides the decrypted payment approval request message to the information relay unit 1020 (1015). The information relay unit 1020 relays card information, payment amount information, and merchant information included in the full payment approval request to a card company server corresponding to the card information.

Those skilled in the art to which the present invention pertains may be inferred from the technical features of encrypting the full payment approval result in the relay server and transmitting it to the home banking terminal with reference to FIGS. 9 and 10. Detailed description thereof will be omitted for convenience.

FIG. 11 is a diagram illustrating a method for encrypting and transmitting a full payment approval request in a home banking terminal in a public key based structure according to an embodiment of the present invention.

In more detail, FIG. 11 is an embodiment of the present invention for encrypting and transmitting the full payment approval request message in a public key infrastructure structure in a home banking terminal equipped with an encryption function as shown in FIG. However, the present invention may infer various implementation methods for encrypting the full payment approval request message in a public key manner in a home banking terminal on the communication network by referring to and / or modifying the present invention. It includes all the implementation methods, and is not limited to the implementation method shown in FIG.

In the figure 11 according to the embodiment of the present invention, the server-side public key is preferably read from the banking authentication module 1130 provided in the home banking terminal, and the banking authentication module 1130 is a predetermined public key ( Or a secret key) and at least one banking authentication IC card or banking authentication module 1130 chip.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by an authentication authority that issues the banking authentication module 1130 to the home banking terminal, thereby limiting the present invention. No.

Referring to FIG. 11, if a predetermined payment approval request message including predetermined card information, payment amount information, merchant information, and terminal-specific information is generated in the full text generation unit 1135 of the home banking terminal, the cryptographic processing part is generated. In operation 1100, if the payment approval request message is provided, the encryption processing unit 1125 may provide a predetermined server-side public key for encrypting the payment approval request message from the banking authentication module 1130. In operation 1105, the payment approval request message is encrypted using the extracted server-side public key in operation 1110.

Here, the encryption function of the encryption processing unit 1125 is referred to as E (Encryption), the server-side public key is k1 (key), the payment approval request full text is P (Plaintext), and the server-encrypted payment is encrypted with the public key. When the full approval request is referred to as C (Ciphertext), the encryption function of the encryption processing unit 1125 may be expressed by an expression such as "Ek1 (P) = C".

According to an embodiment of the present invention, the encryption processing unit 1125 encrypts the payment approval request message through the server-side public key, RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm). ), DH (Diffie, Hellman), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, ECDH is preferably included at least one or more, in addition to various encryption algorithms may be used, but by a specific encryption algorithm The present invention is not limited.

For example, in the case of encrypting the full payment approval request message through the RSA encryption algorithm among the encryption algorithms, a public method (Modulus) used in the encryption process is n, and a prime number that is not disclosed by different prime factors of n is a. And b, if the published index (e.g., 3 or 216+) is e, and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a -1) (b-1) ", wherein the encryption function of the encryption processing unit 1125 may be expressed as" C = Ek1 (P) = Pe mod n ".

When the payment approval request message is encrypted through the server-side public key as described above, the specialized transmission unit 1120 transmits the encrypted payment approval request message to the relay server through a network component on the communication network (1115). .

12 is a diagram illustrating a method for decrypting a full payment approval request message encrypted and received by a relay server according to an embodiment of the present invention using a public key infrastructure.

In more detail, FIG. 12 illustrates a method for decrypting the full payment approval request message encrypted and received from a home banking terminal equipped with an encryption function as shown in FIG. As a person of ordinary skill in the art to which the present invention pertains, a public key-based architecture scheme may be used to convert the entire payment approval request encrypted with the server-side public key from a home banking terminal on the communication network by referring to and / or modifying the drawing 12. Although various embodiments of decoding may be inferred, the present invention includes all the inferred embodiments, and is not limited to the embodiments shown in FIG.

In FIG. 12 according to an embodiment of the present invention, a server-side private key for decrypting a payment approval request text encrypted with the server-side public key in a public key infrastructure structure is provided with the security module (not shown) provided in the relay server. Preferably, the security module is stored in a predetermined database (not shown) interworking with the relay server, and the present invention is not limited thereto.

Referring to FIG. 12, the full-text receiving unit 1230 of the relay server receives the encrypted payment approval request message through the communication network and provides it to the encryption unit 1225 (1200). It is preferably received via the communication protocol stack defined in.

Thereafter, the encryption unit 1225 extracts a server-side private key for decrypting the encrypted payment approval request text from the security module provided in the relay server (1205), and through the extracted server-side private key. The encrypted payment approval request text is decrypted (1210).

Here, the decryption function of the encryption unit 1225 is referred to as D (Decryption), the server-side private key is k2 (key), and the full payment approval request encrypted with the server-side public key is C (Ciphertext) and the server. When the payment approval request text decrypted with the side private key is P (Plaintext), the function of decrypting the encrypted payment approval request text by the encryption unit 1225 is "Dk2 = P, or Dk2 (Ek (P)) =" It can be expressed by an expression such as "P".

According to the exemplary embodiment of the present invention, the encryption unit 1225 decrypts the payment approval request message encrypted with the server-side public key in the home-banking terminal through the server-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman (DSA), Digital Signature Algorithm (DSA), Diffie, Hellman (DH), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, and ECDH. The decryption algorithm may be matched with an encryption algorithm used in the home banking terminal, and the present invention is not limited to a specific decryption algorithm.

For example, in the case of decrypting the full payment approval request message through the RSA decryption algorithm, the public method (Modulus) used in the decryption process is not disclosed with n and different prime factors of n. If the prime is a and b, the published exponent (e.g. 3 or 216+) is e and the undisclosed exponent is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1) (b-1) ", wherein the decryption function of the encryption unit 1225 may be expressed as" P = Dk2 = Cd mod n ".

When the payment approval request message encrypted with the server-side public key is decrypted by the home banking terminal as described above, the encryption unit 1225 transfers the decrypted payment approval request message to the information relay unit 1220. In operation 1215, the information relay unit 1220 relays card information, payment amount information, and merchant information included in the full payment approval request to a card company server corresponding to the card information.

If one of ordinary skill in the art to which the present invention belongs, it will be able to infer a technical feature of encrypting the full payment approval result in the relay server and transmitting to the home banking terminal with reference to FIGS. Detailed description thereof will be omitted for convenience.

FIG. 13 is a diagram illustrating a method of encrypting and transmitting a full payment approval request message in an electronic envelope method in a home banking terminal according to an embodiment of the present invention.

More specifically, FIG. 13 is an embodiment of a method of encrypting and transmitting the full payment approval request message in an electronic envelope method in a home banking terminal equipped with an encryption function as shown in FIG. 1, which is commonly known in the art. With reference to the Figure 13 and / or modified to be able to infer various implementation methods for encrypting the payment approval request full text electronic envelope method in the home banking terminal on the communication network, the present invention is inferred implementation It includes all methods, and is not limited to the embodiment shown in FIG.

In FIG. 13 according to an embodiment of the present invention, the server-side public key is preferably read from the banking authentication module 1345 provided in the home banking terminal, and the banking authentication module 1345 has a predetermined public key ( Or a secret key) and at least one banking authentication IC card or banking authentication module 1345 chip.

Alternatively, the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by an authentication authority that issues the banking authentication module 1345 to the home banking terminal, thereby limiting the present invention. No.

Referring to FIG. 13, when a predetermined payment approval request message including predetermined card information, payment amount information, merchant information, and terminal specific information is generated in the full text generation unit of the home banking terminal, it is transmitted to the cryptographic processing unit 1340. In operation 1300, when the payment approval request text is provided, the encryption processing unit 1340 encrypts the payment approval request text by a secret key (symmetric key) method. key) (1305), and encrypts the full text of the payment approval request using the generated secret key (1310).

Herein, the encryption function of the encryption processing unit 1340 is called E (Encryption), the secret key is r (random secret key), the payment approval request is P (Plaintext), and the payment approval request encrypted with the secret key. When the full text is referred to as C (Ciphertext), the encryption function of the encryption processing unit 1340 may be expressed by an expression such as "Er (P) = C".

According to an embodiment of the present invention, the encryption processing unit 1340 encrypts the payment approval request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA (International Data). It is preferable to include at least one or more of the Encryption Algorithm, and various forms of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

Thereafter, the encryption processing unit 1340 encrypts the secret key (random secret key) used to encrypt the full payment approval request message. For this purpose, the encryption processing unit 1340 is a predetermined server from the banking authentication module 1345. The side public key is extracted (1315), and the secret key is encrypted using the server side public key (1320).

Here, the encryption function of the encryption processing unit 1340 is called E (Encryption), the server-side public key is k1 (key), the secret key is r (random Secret key), and the secret encrypted with the server-side public key. If the key is C (Ciphertext), the encryption function of the encryption processing unit 1340 may be expressed by an expression such as "Ek1 (r) = C".

According to an embodiment of the present invention, the encryption processing unit 1340 encrypts the secret key through the server-side public key, including RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 1340 may be expressed as" C = Ek1 (r) = re mod n ".

If the payment approval request is encrypted with the secret key and the secret key is encrypted with the server-side public key, the encryption processing unit 1340 encrypts the payment approval request with the secret key and the server-side public key. Generate transaction data associated with the secret key provided to the specialized transmission unit 1335 (1325), and the specialized transmission unit 1335 transmits the transaction data to the relay server through a network component on a communication network. (1330).

FIG. 14 is a diagram illustrating a method of decrypting a full payment approval request received encrypted by a relay server in an electronic envelope method according to an embodiment of the present invention.

More specifically, FIG. 14 decrypts the transaction data in an electronic envelope method in a relay server such as FIG. 5, which receives transaction data including an encrypted payment approval request message from a home banking terminal equipped with an encryption function as shown in FIG. As the embodiment of the present invention, if the skilled in the art to which the present invention pertains, refer to and / or modify the drawing 14 to the electronic banking terminal encrypted transaction data in the home banking terminal on the communication network Various implementation methods of decoding by the envelope method may be inferred, but the present invention includes all the inferred implementation methods, and is not limited to the implementation method shown in FIG.

In this figure 14 according to the embodiment of the present invention, the server-side private key for decrypting the transaction data in an electronic envelope method is preferably read from the security module (not shown) provided in the relay server. Is preferably stored in a predetermined database (not shown) interworking with the relay server, and the present invention is not limited thereto.

Referring to FIG. 14, the full-text receiving unit 1445 of the relay server receives predetermined transaction data including the full payment approval request message encrypted through the communication network and provides the predetermined transaction data to the encrypting unit 1440 (1400). Preferably, the transaction data is received through a communication protocol stack defined in the communication network.

Thereafter, the encryption unit 1440 extracts a server-side private key for decrypting the encrypted secret key included in the transaction data from the security module included in the relay server (1405), and extracts the extracted server-side private key. By decrypting the private key encrypted with the server-side public key in the home banking terminal (1410), and extracting a predetermined secret key for decrypting the full payment authorization request (1415), and using the extracted secret key By decrypting the payment approval request text (1420), the home banking terminal extracts the payment approval request text encrypted with the secret key (1425).

Here, the decryption function of the encryption unit 1440 is called D (Decryption), the server-side private key is k2 (key), the secret key encrypted with the server-side public key is C (Ciphertext), and the server-side individual. When the secret key decrypted with the key is r (random secret key), the function of decrypting the encrypted secret key by the encryption unit 1440 is "Dk2 = r, or Dk2 (Ek1 (r)) = r". It can be expressed as an expression.

According to an embodiment of the present invention, an algorithm for decrypting the secret key encrypted by the server-side public key in the home banking terminal by the encryption unit 1440 may include RSA (Ron Rivest, Adi Shamir, Len Adleman). ), Digital Signature Algorithm (DSA), Diffie, Hellman (DH), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, and ECDH. However, the decryption algorithm is characterized in that it matches the encryption algorithm used in the home banking terminal, the invention is not limited by a specific decryption algorithm.

For example, when decrypting the secret key through the RSA decryption algorithm among the public key-based decryption algorithms, n is a public method (Modulus) used in the decryption process, and n is a prime number that is not disclosed by different prime factors of n. If a and b, the published index (e.g. 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod ( a-1) (b-1) ", wherein the decryption function of the encryption unit 1440 may be expressed as" P = Dk2 = Cd mod n ".

Here, the decryption function of the encryption unit 1440 is called D (Decryption), the secret key is r (random secret key), the full text of the payment approval request encrypted with the secret key (Ciphertext), and the decryption When the payment approval request message is P (Plaintext), the function of decrypting the encrypted payment approval request message by the encryption unit 1440 is "Dr = P, or Dr (Er (P)) = P". It can be expressed as an expression.

According to the exemplary embodiment of the present invention, the encryption unit 1440 decrypts the encrypted payment authorization request message through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA ( International Data Encryption Algorithm) preferably includes at least one or more, and various other decryption algorithms may be used, but the decryption algorithm is characterized in that it is matched with the encryption algorithm used in the home banking terminal, The present invention is not limited by the decoding algorithm.

When the payment approval request text is decrypted as described above, the encryption unit 1440 provides the decrypted payment approval request text to the information relay unit 1435 (1430), and the information relay unit 1435 provides the payment. Card information, payment amount information and merchant information contained in the full authorization request is relayed to the card company server corresponding to the card information.

If one of ordinary skill in the art to which the present invention belongs, it will be able to infer the technical feature of encrypting the full payment approval result in the relay server and transmitting to the home banking terminal with reference to the drawings 13 and 14; Detailed description thereof will be omitted for convenience.

15A and 15B illustrate a method of encrypting and transmitting a full payment approval request message in a key exchange method in a home banking terminal according to an embodiment of the present invention.

15A and 15B illustrate a method of encrypting and transmitting the full payment approval request message in a key exchange method in a home banking terminal equipped with an encryption function as shown in FIG. However, the present invention may infer various implementation methods for encrypting the payment approval request full text by a key exchange method in a home banking terminal on the communication network by referring to and / or modifying the present invention. It includes all the implementation methods, and is not limited to the implementation method shown in FIG.

According to an embodiment of the present invention, the terminal-side private key and the server-side public key may be read from the banking authentication module 1555 provided in the home banking terminal, and the banking authentication module 1555 may be read. At least one banking authentication IC card or a banking authentication module 1555 chip having a predetermined public key (or secret key) is preferably included.

Alternatively, the terminal-side private key and the server-side public key may be extracted from a predetermined directory (not shown) operated and managed by an authentication authority that issues the banking authentication module 1555 to the home banking terminal. The present invention is not limited.

Referring to FIGS. 15A and 15B, when a predetermined payment approval request message including predetermined card information, payment amount information, merchant information and terminal-specific information is generated in the full text generation unit of the home banking terminal, the cryptographic processing unit ( 1550), when the payment approval request message is provided, the cryptographic processing unit 1550 may provide the payment approval request message with a predetermined one-way hash function (for example, regardless of the length of the payment approval request message). A one-way hash function that generates a Message Digest containing a hash code of length and cannot identify (or infer) the original message via the hash code (or message digest). The home banking terminal and the relay server use the same hash function to generate a predetermined message digest (1505), and the message digest is generated. The digital signature is performed by encrypting the terminal-side private key (1510).

Herein, the encryption function of the encryption processing unit 1550 is called E (Encryption), the terminal-side private key is encrypted with t1 (16erminal side key), the message digest is m (message digest), and the terminal-side private key. If the message digest is C (Ciphertext), the digital signature function of the encryption processing unit 1550 may be expressed by an expression such as "Et1 (m) = C".

According to an embodiment of the present invention, the algorithm for encrypting the message digest by the encryption processing unit 1550 using the terminal-side private key includes RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), At least one of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, and ECDH is preferably included. This is not limited.

For example, in the case of encrypting the message digest through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the digital signature function of the encryption processing unit 1550 may be expressed as" C = Et1 (m) = me mod n ".

In addition, the encryption processing unit 1550 generates a predetermined random secret key for encrypting the payment approval request text in a secret key (symmetric key) manner (1515), and the payment approval request. The message digest encrypted with the full text and the terminal-side private key and a copy of a certificate (eg, a certificate including the terminal-side public key) provided in the banking authentication module 1555 are linked to each other and encrypted through the generated secret key ( 1520).

Herein, the encryption function of the encryption processing unit 1550 is referred to as E (Encryption), the secret key is r (random secret key), the payment approval request and the copy of the certificate is encrypted with P (Plaintext) and the secret key. When the full text of the payment approval request and the copy of the certificate are referred to as C (Ciphertext), the encryption function of the encryption processing unit 1550 may be expressed by an equation such as "Er (P) = C".

According to the embodiment of the present invention, the encryption processing unit 1550 encrypts the payment approval request full text and the certificate copy through the secret key, SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, IDEA. It is preferable to include at least one or more of the International Data Encryption Algorithm, and in addition, various types of encryption algorithms may be used, but the present invention is not limited to a specific encryption algorithm.

In addition, the encryption processing unit 1550 extracts a predetermined server-side public key from the banking authentication module 1555 to encrypt the secret key that encrypts the payment approval request message (1525), and the server-side public key. Using a 1530 to encrypt the secret key encrypting the payment approval request full text.

Here, the encryption function of the encryption processing unit 1550 is called E (Encryption), the server-side public key is encrypted with s1 (server side key), the secret key is r (random secret key), and the server-side public key. When the secret key is referred to as C (Ciphertext), the encryption function of the encryption processing unit 1550 may be expressed by an expression such as "Es1 (r) = C".

According to an embodiment of the present invention, the algorithm for encrypting the secret key by the encryption processing unit 1550 through the server-side public key includes RSA (Ron Rivest, Adi Shamir, Len Adleman), DSA (Digital Signature Algorithm), It is preferable to include at least one or more of DH (Diffie, Hellman), ECC (Elliptic Curve Cryptosystem), KCDSA, ECDSA, ECDH, in addition to various encryption algorithms may be used, the present invention by a specific encryption algorithm This is not limited.

For example, in the case of encrypting the secret key through the RSA encryption algorithm among the encryption algorithms, the public method (Modulus) used in the encryption process is n, and the non-public prime numbers with different prime factors of n are a and b. , If the published index (e.g., 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod (a-1). (b-1) ", wherein the encryption function of the encryption processing unit 1550 may be expressed as" C = Es1 (r) = re mod n ".

The payment approval request message and the message digest encrypted with the terminal-side private key and a copy of a certificate including the terminal-side public key are linked to each other and encrypted through the generated secret key, and the secret key is encrypted with the server-side public key. When encrypted through the encryption processing unit 1550, the server side copies a certificate including the message digest encrypted with the payment authorization request message and the terminal-side private key encrypted with the secret key and the terminal-side public key. Generates predetermined transaction data in association with a secret key encrypted with a public key, provides the generated transaction data to the specialized transmission unit 1545 (1535), and the specialized transmission unit 1545 transmits the transaction data to a communication network. It transmits to the relay server through the network component on the network (1540).

16A and 16B illustrate a method of decrypting a full payment approval request message encrypted and received at a relay server by a key exchange method according to an embodiment of the present invention.

In more detail, Figures 16a and 16b are keyed to the transaction data in the relay server as shown in Figure 5 that receives the transaction data including the encrypted payment authorization request message from the home banking terminal equipped with the encryption function as shown in Figure 1 An embodiment of the present invention relates to a method of decrypting by an exchange method. If the present invention belongs to one of ordinary skill in the art, a transaction encrypted by the key exchange method in a home banking terminal on the communication network by referring to and / or modifying the drawing of FIG. Various implementation methods for decrypting data by the same key exchange method may be inferred, but the present invention includes all the inferred implementation methods and is not limited to the implementation method shown in FIG.

In FIG. 16 according to the embodiment of the present invention, the server-side private key and the terminal-side public key for decrypting the transaction data in a key exchange method are preferably read from the security module (not shown) provided in the relay server. In addition, the security module is preferably stored in a predetermined database (not shown) that interoperates with the relay server, whereby the present invention is not limited.

Referring to FIGS. 16A and 16B, the message receiving unit 1670 of the relay server receives the transaction data including the encrypted payment approval request message through the communication network (1600), and converts the transaction data into the encryption unit ( 1665, preferably, the transaction data is received through a communication protocol defined in the communication network, and / or encrypted with the payment approval request message and the terminal-side private key encrypted with the secret key. And a copy of the certificate including a message digest and the terminal-side public key, and the secret key encrypted with the server-side public key.

Thereafter, the encryption unit 1665 extracts the server-side private key from the security module provided in the relay server to decrypt the secret key encrypted with the server-side public key (1610), and through the server-side private key. By decrypting the secret key (1615), the secret key for decrypting a copy of the certificate including the message digest encrypted with the full payment authorization request message and the terminal-side private key and the terminal-side public key is extracted (1620). .

Here, the decryption function of the encryption unit 1665 is called D (Decryption), the server side private key is s2 (server side key), the server side public key is encrypted with C (Ciphertext), and the server When the secret key decrypted with the side private key is r (random secret key), the function of decrypting the encrypted secret key by the encryption unit 1665 is "Ds2 = r, or Ds2 (Es1 (r)) = r". It can be expressed as

According to an embodiment of the present invention, the algorithm for decrypting the secret key encrypted by the server-side public key in the home banking terminal through the server-side private key, RSA (Ron Rivest, Adi Shamir, Len Adleman) ), Digital Signature Algorithm (DSA), Diffie, Hellman (DH), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, and ECDH. However, the decryption algorithm is characterized in that it matches the encryption algorithm used in the home banking terminal, the invention is not limited by a specific decryption algorithm.

For example, when decrypting the secret key through the RSA decryption algorithm among the public key-based decryption algorithms, the public method (Modulus) used in the decryption process is n, a prime number that is not disclosed by different prime factors of n. If a and b, the published index (e.g. 3 or 216+) is e, the undisclosed index is d, the n satisfies "n = a * b", d is "de = 1 mod (a-1) (b-1) ", wherein the decryption function of the encryption unit 1665 may be expressed as" P = Ds2 = Cd mod n ".

When the secret key is extracted as described above, the encryption unit 1665 includes the message digest encrypted with the payment approval request message and the terminal-side private key using the extracted secret key and the terminal-side public key. By decrypting the copy (1625), a certificate copy including the full message of the payment approval request encrypted with the secret key and the message digest encrypted with the terminal-side private key and the terminal-side public key are extracted.

Here, the decryption function of the encryption unit 1665 is referred to as D (Decryption), the secret key is r (random secret key), and the message digest encrypted with the secret key encrypted with the secret key and the terminal private key And a copy of the certificate including the terminal-side public key C (Ciphertext), and a copy of the certificate including the message digest encrypted with the decrypted full payment authorization request message and the terminal-side private key and the terminal-side public key P ( Plaintext), the encrypting unit 1665 decrypts a copy of the certificate including the message digest encrypted with the encrypted payment authorization request message and the terminal-side private key and the terminal-side public key. , Or Dr (Er (P)) = P ".

According to an embodiment of the present invention, the encryption unit 1665 copies a certificate including the message digest encrypted with the encrypted payment approval request message and the terminal-side private key through the secret key and the terminal-side public key. The decryption algorithm may include at least one or more of SEED, DES (Data Encryption Standard), Triple-DES, Skipjack, and International Data Encryption Algorithm (IDEA), and various types of decryption algorithms may be used. The decryption algorithm is matched with an encryption algorithm used in the home banking terminal, and the present invention is not limited to a specific decryption algorithm.

In addition, the encryption unit 1665 decrypts the message digest encrypted with the terminal-side private key through the terminal-side public key (1630), thereby generating a message digest generated and transmitted from the payment approval request message in the home banking terminal. Extraction (1635).

Here, the decryption function of the encryption unit 1665 is called D (Decryption), the terminal side public key is t2 (terminal side key), and the message digest encrypted with the terminal side private key is C (Ciphertext), and the If the message digest decrypted with the terminal-side public key is m (Message Digest), the function of decrypting the encrypted message digest by the encryption unit 1665 is "Dt2 = m, or Dt2 (Es1 (r)) = m". It can be expressed as

According to an embodiment of the present invention, the algorithm for decrypting the message digest encrypted by the terminal-side private key in the home banking terminal through the terminal-side public key is RSA (Ron Rivest, Adi Shamir, Len Adleman). ), Digital Signature Algorithm (DSA), Diffie, Hellman (DH), Elliptic Curve Cryptosystem (ECC), KCDSA, ECDSA, and ECDH. However, the decryption algorithm is characterized in that it matches the encryption algorithm used in the home banking terminal, the invention is not limited by a specific decryption algorithm.

For example, when decrypting the message digest through the RSA decryption algorithm of the public key-based decryption algorithm, n is a public method (Modulus) used in the decryption process and n is a prime number that is not disclosed by different prime factors of n. If a and b, the published index (e.g. 3 or 216+) is e and the undisclosed index is d, then n satisfies "n = a * b" and d is "de = 1 mod ( a-1) (b-1) ", wherein the decryption function of the encryption unit 1665 may be expressed as" P = Dt2 = Cd mod n ".

Thereafter, the encryption unit 1665 generates a predetermined message digest through the same one-way hash function of the received payment approval request message (1640), and then generates the generated message digest and the decrypted message digest. By comparing 1645, the validity of the received payment approval request text is confirmed.

If the generated message digest and the decrypted message digest match (1650), the encryption unit 1665 provides the full text of the payment approval request to the information relay unit 1660 (1655). In operation 1660, the card information, payment amount information, and merchant information included in the full payment approval request may be relayed to a card company server corresponding to the card information.

Those skilled in the art to which the present invention pertains, with reference to the Figures 15a and 15b and the Figure 16a and 16b the technical to encrypt the full payment approval result in the relay server to transmit to the home banking terminal Since a feature may be inferred, a detailed description thereof will be omitted for convenience.

FIG. 17 is a diagram illustrating an operation process of a card company server 545 for approval of payment using a home banking terminal 595 according to an exemplary embodiment of the present invention.

In more detail, FIG. 17 illustrates the payment amount in the card company server 545 when the payment process is performed using the payment channel corresponding to the card payment system shown in FIG. 5 through the customer card 598 issued by the card company. The process of the payment approval process through the customer card 598 corresponding to the card information, if the person of ordinary skill in the art belongs to, the home banking terminal by referring to and / or modified in this figure 17 Various implementation methods for the operation process of the card company server 545 for payment approval using 595 may be inferred, but the present invention includes all the implementation methods inferred above, and is illustrated in FIG. 17. The technical features are not limited only by the method.

Referring to FIG. 17, when the card information, the payment amount, and the affiliated store information are received from the relay server 500 shown in FIG. 5 through the process shown in FIG. 7 (1700), the card company server 545 is The received card information is issued by the card company and checks whether the card information matches the card information stored in the card information D / B 580 (1705).

According to an embodiment of the present invention, the affiliate server uses the card information as a keyword to search / search for card information stored in the card information D / B 580, whereby the card information is issued by the card company. It is desirable to confirm that it is.

If the card information does not match the card information stored in the card information D / B 580 (1710), the card company server 545 generates a payment processing history including the card information error code. In operation 1715, the generated payment processing details are transmitted to the relay server 500 (1755). Then, the relay server 500 transmits the full payment approval result including the payment processing details in FIG. It is preferable to transmit to the home banking terminal 595.

On the other hand, if it is confirmed that the card information matches the card information stored in the card information D / B 580 (1710), the card company server 545 sends the card from the card information D / B 580. The limit amount for the customer card 598 is checked based on the card limit information associated with the information (1720).

According to an embodiment of the present invention, when the payment means corresponding to the confirmed card information comprises a credit card payment means (or postpaid payment attribute), the card company server 545 is the card information D / B ( 580 confirms the predetermined credit limit amount information stored in association with the card information and compares the confirmed credit limit amount information with the payment amount, thereby making payment for the payment amount through the customer card 598. It is desirable to process the approval.

According to another embodiment of the present invention, if the payment means corresponding to the confirmed card information comprises a check card / debit card payment means (or debit payment attribute associated with the account) associated with a predetermined account, The card company server 545 checks the predetermined account information stored in association with the card information from the card information D / B 580 and checks the account balance in connection with a predetermined financial system in which the account is opened. After that, it is preferable to process the payment approval for the payment amount through the customer card 598 by comparing the confirmed account balance with the payment amount.

Alternatively, when the account balance information stored in association with the card information is directly stored in the card information D / B 580, the card company server 545 is connected with the card information from the card information D / B 580. After confirming the account balance stored and stored in association, it is possible to process payment approval for the payment amount through the customer card 598 by comparing the confirmed account balance with the payment amount.

According to another embodiment of the present invention, when the payment means corresponding to the confirmed card information comprises a prepaid card payment means (or prepaid payment attribute), the card company server 545 is the card information D / Checking the predetermined amount of charge information stored in association with the card information from B (580), and comparing the confirmed amount of payment information and the amount of payment, the payment for the payment amount through the customer card 598 It is desirable to process the approval.

If the limit amount for the customer card 598 is confirmed (1725), the card company server 545 compares the payment amount with the limit amount, thereby paying the payment amount using the customer card 598. A payment approval procedure for processing is performed (1730).

If, as a result of the payment approval, payment approval for the payment amount is not confirmed (1735), the card company server 545 may include payment error information (for example, payment error code) for the customer card 598. Generating processing history information (1740), and transmits the generated payment processing history to the relay server 500 (1755), and then the relay server 500 completes the payment approval result including the payment processing history It is preferable to transmit to the home banking terminal 595 shown in FIG.

On the other hand, if the payment approval is confirmed, the payment approval for the payment amount (1735), the card company server 545 includes the card information, payment amount information, merchant information and payment approval information (eg payment approval number) Generating payment processing history information (1745), and the transaction processing history information including the card information, payment amount information, merchant information and payment approval information, and transaction history information including the payment date and time information; After storing in B 585 (1750), the generated payment processing details are transmitted to the relay server 500 (1755), and then the relay server 500 receives a payment approval result including the payment processing details. It is preferable to transmit the full text to the home banking terminal 595 shown in FIG.

According to the present invention, after linking a home banking terminal equipped with a predetermined card reader and a client terminal provided in each home by cable communication (or short-range wireless communication), predetermined payment amount information and merchant information are received by the client terminal. In this case, by providing the payment amount information and merchant information to the home banking terminal through the cable communication (or short-range wireless communication), it is safe while canceling security problems caused by key input of various financial information (or payment information). There is an advantage in the payment processing of the delivery product conveniently.

Claims (6)

When a predetermined client terminal connects through a predetermined communication network and transmits predetermined purchase request information, a predetermined shopping mall server generates predetermined payment amount information and affiliated store information corresponding to the purchase request information, and generates the client through the communication network. Transmitting to the terminal; When the client terminal transmits the received payment amount information and merchant information through a predetermined cable communication (or near field wireless communication), a predetermined home banking terminal receives the payment amount information through the cable communication (or near field wireless communication). Receives merchant information, reads predetermined card information from a predetermined customer card, generates a predetermined payment approval request message including the card information, payment amount information, and merchant information, and transmits to the predetermined server through a predetermined communication network. Transmitting the online payment method comprising a. A recording medium comprising a program for executing the method of claim 1. When a predetermined client terminal connects through a predetermined communication network and transmits predetermined purchase request information, the predetermined client terminal generates predetermined payment amount information and merchant information corresponding to the purchase request information, and transmits the predetermined purchase amount information to the client terminal through the communication network. Shopping mall server; When the client terminal transmits the received payment amount information and merchant information through a predetermined cable communication (or near field communication), the payment amount information and merchant information is received through the cable communication (or near field communication). A home banking terminal that reads predetermined card information from a predetermined customer card, generates a predetermined payment approval request message including the card information, payment amount information, and merchant information, and transmits the predetermined payment approval request message to a predetermined server through a predetermined communication network; Online payment system, characterized in that comprises a. A communication processor for connecting cable communication (or short-range wireless communication) with a predetermined client terminal through predetermined cable communication (or short-range wireless communication), and connecting a communication channel with a server on a predetermined communication network; An information receiving unit receiving predetermined payment amount information and affiliated store information from the client terminal through the cable communication (or short-range wireless communication) in association with the communication processing unit; A card reader unit for reading predetermined card information from a predetermined customer card; A text generation unit for generating a predetermined payment approval request message including the card information, payment amount information, and affiliated store information; A professional transmission unit for transmitting the full text of the payment approval request through the communication network; And Receiving the payment amount information and merchant information through the information receiving unit, reading the card information from the customer card, and generates a predetermined payment approval request full text including the card information, payment amount information and merchant information Banking authentication module for controlling the transmission to the server on the communication network; characterized in that it comprises a home banking terminal for the online payment processing. The method of claim 4, wherein And a mode checking unit for switching (or selecting) an operation mode of the home banking terminal to the payment mode when the payment amount information and the affiliated store information are received from the client terminal through the information receiving unit. Home banking terminal for payment processing. A recording medium which records a program for realizing the device constituting function of claim 4.
KR1020070062565A 2007-06-25 2007-06-25 System and method for payment online, home banking terminal and program recording medium KR20090002269A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020070062565A KR20090002269A (en) 2007-06-25 2007-06-25 System and method for payment online, home banking terminal and program recording medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020070062565A KR20090002269A (en) 2007-06-25 2007-06-25 System and method for payment online, home banking terminal and program recording medium

Publications (1)

Publication Number Publication Date
KR20090002269A true KR20090002269A (en) 2009-01-09

Family

ID=40485279

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020070062565A KR20090002269A (en) 2007-06-25 2007-06-25 System and method for payment online, home banking terminal and program recording medium

Country Status (1)

Country Link
KR (1) KR20090002269A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20180126731A (en) 2017-05-18 2018-11-28 김덕상 Online payment method, online payment system and apparatus

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20180126731A (en) 2017-05-18 2018-11-28 김덕상 Online payment method, online payment system and apparatus

Similar Documents

Publication Publication Date Title
KR100876091B1 (en) Transaction point terminal device for distributed payment using near field communication
KR100791269B1 (en) System and Method for Processing Information and Recording Medium
KR20090002269A (en) System and method for payment online, home banking terminal and program recording medium
KR101367026B1 (en) Method for Payment by Using Home Banking Terminal
KR20090051284A (en) System and method for home shopping payment by using voip terminal and program recording medium
KR20090051286A (en) System and method for non-faced financial transaction by using voip terminal and program recording medium
KR101212237B1 (en) System and Method for Paying Input by VoIP Terminal, VoIP Terminal and Recording Medium
KR101041121B1 (en) System and Method Inquiring Transaction by VoIP Terminal, VoIP Terminal and Recording Medium
KR20090002267A (en) Home banking terminal for processing offline payment and program recording medium
KR100738207B1 (en) System for processing cash payment, financial automatic devices and program recording medium
KR101078953B1 (en) System and Method for Processing Scrap Public Certificate of Attestation and Recording Medium
KR101006876B1 (en) System and Method for Settling Home-Shopping
KR100928412B1 (en) Payment processing system using virtual merchant network
KR100834583B1 (en) Method for Executing Payment and Program Recordig Medium
KR101028448B1 (en) VoIP Complex Terminal with Card Reader
KR101065424B1 (en) System and Method for Payment Settlement by Using VoIP Devices
KR20090104162A (en) System and Method for Processing Home Shopping Payment Statement by Using VoIP Terminal and Program Recording Medium
KR20100032871A (en) Voip terminal for processing home shopping payment
KR101020576B1 (en) System for Payment Account Transfer of Server Linked with VoIP Terminal with Card Reader
KR101041120B1 (en) System and Method for Paying Inquiry by VoIP Terminal, VoIP Terminal and Recording Medium
KR20080096639A (en) Method for distributed payment by using transaction point devices
KR101028450B1 (en) System and Method for Card Payment of Server Linked with VoIP Terminal with Card Reader
KR20080085110A (en) Method and system for processing user authentication information
KR20100013367A (en) System and method for goods settlement by using voip devices and recording medium
KR20090051287A (en) System and method for monitoring affiliated store and program recording medium

Legal Events

Date Code Title Description
N231 Notification of change of applicant
A201 Request for examination
E902 Notification of reason for refusal
E601 Decision to refuse application
E601 Decision to refuse application