KR20090036044A - System and method for operating advertisement with one-time authentication and mobile phone, recording medium - Google Patents

System and method for operating advertisement with one-time authentication and mobile phone, recording medium Download PDF

Info

Publication number
KR20090036044A
KR20090036044A KR1020070101140A KR20070101140A KR20090036044A KR 20090036044 A KR20090036044 A KR 20090036044A KR 1020070101140 A KR1020070101140 A KR 1020070101140A KR 20070101140 A KR20070101140 A KR 20070101140A KR 20090036044 A KR20090036044 A KR 20090036044A
Authority
KR
South Korea
Prior art keywords
time authentication
advertisement
wireless
authentication
screen
Prior art date
Application number
KR1020070101140A
Other languages
Korean (ko)
Inventor
정종필
Original Assignee
주식회사 신한은행
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 신한은행 filed Critical 주식회사 신한은행
Priority to KR1020070101140A priority Critical patent/KR20090036044A/en
Publication of KR20090036044A publication Critical patent/KR20090036044A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • G06Q30/0241Advertisements
    • G06Q30/0273Determination of fees for advertising
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Development Economics (AREA)
  • General Physics & Mathematics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Game Theory and Decision Science (AREA)
  • Technology Law (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A system and a method for managing an advertisement through a disposable authentication process, and a mobile phone and a recording medium for the same are provided to supply to a user a wireless security authentication service based on disposable authentication free of charge. When processing wireless security authentication based on an authentication key by using a mobile phone, an output processor separates and outputs a disposable authentication region and an advertisement output region to a certain region of a screen of a mobile screen. The disposable authentication region outputs a disposable authentication screen for processing the wireless security authentication based on the disposable authentication key. The advertisement output region outputs advertisement data. An advertisement receiving unit(715) receives advertisement data to be outputted to the advertisement output region through a wireless communication network. An authentication processor(735) generates and outputs a disposable authentication key through the disposable authentication region.

Description

Wireless one-time authentication based advertising operation method and system and mobile phone and recording medium therefor {System and Method for Operating Advertisement with One-time Authentication and Mobile Phone, Recording Medium}

1 is a diagram illustrating a system configuration for processing a one-time authentication key-based wireless security authentication through a one-time authentication region output separately from an advertisement output region according to an embodiment of the present invention.

2 is a diagram illustrating a program providing system configuration for remotely installing and downloading a one-time authentication program for dividing an advertisement output region and a one-time authentication region and outputting them on a screen by a wireless terminal according to an embodiment of the present invention.

3 is a diagram illustrating a configuration of wireless terminal information having a one-time authentication program according to an embodiment of the present invention.

4 is a diagram illustrating one-time authentication management information provided to a wireless terminal according to an embodiment of the present invention.

5 is a diagram illustrating one-time authentication management information provided to a wireless terminal according to another embodiment of the present invention.

6 is a diagram illustrating a process of downloading and remotely mounting a one-time authentication program for outputting on the screen by dividing the advertisement output area and the one-time authentication area by a wireless terminal according to an embodiment of the present invention.

7 is a diagram illustrating a wireless terminal function configuration having a one-time authentication key based wireless security authentication processing function according to an embodiment of the present invention.

8 is a diagram illustrating a configuration of a one-time authentication key-based wireless security authentication processing system according to an embodiment of the present invention.

9 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

10 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

11 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

12 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

13 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

14 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

15 is a diagram illustrating a process of inputting and transmitting a one-time authentication key according to an embodiment of the present invention.

16 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

17 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

18 is a diagram illustrating an advertisement providing process for replacing a one-time authentication fee (or a discount) according to an embodiment of the present invention.

<Description of main parts of drawing>

100: program providing server 105: authentication server

110: financial server 115: payment server

120: wireless web server 125: wireless server

130: network operation system 135: ad server

140: wireless terminal

The present invention is a one-time authentication screen for processing the one-time authentication key-based wireless security authentication by transmitting the advertising data to the mobile phone through the wireless communication network from the advertisement providing means when processing a one-time authentication key-based wireless security authentication in the mobile phone used by the customer Processing the output to an advertisement output area excluding the one-time authentication area to be output, and confirming an advertisement revenue amount corresponding to the output of the advertisement data in the advertisement output area by an amount calculation means, and performing one-time authentication of the advertisement revenue amount. It relates to a wireless one-time authentication-based advertising operation method comprising the step of calculating the fee replacement amount and the step of processing the replacement (or discount) the one-time authentication fee amount through the calculated one-time authentication fee replacement amount in the fee processing means. .

As the rapid development of information and communication technology has been applied to the financial industry, most financial transactions (or payments) and various service industries that have been conventionally face-to-face have been made online through non-face-to-face financial transactions (or payments) and online services. Developed into an industry.

As the non-face-to-face financial transactions (or payments) and online service industries are gradually activated, cases of security problems such as online anonymity and security shortcomings in communication protocols are increasing rapidly. The non-face-to-face financial transactions (or payments) and online services are based on a method of using an encryption / decryption-based security protocol to solve anonymity, compensate for shortcomings in communication protocols through real name verification.

Recently, various non-face-to-face financial transactions (or payments) and online services that have been activated online have been transferred to the wireless field using the wireless network due to the opening of the wireless network and the expansion of the wireless communication infrastructure. Most wireless terminals are not only more constrained to MMI (Man Machine Interface) than the wired terminals used online, but also have low computing power, and the communication speed of the wireless network is lower than on-line. Since the security defects are different, it includes a problem that is difficult to apply the security function applied online, the security function applied to the wireless field is to minimize the user input, and to prevent high-level encryption / decryption operation It is preferably made in the form.

On the other hand, as a means for solving the online security problem, a one-time authentication key method called a one-time password (OTP) is commercially available, so-called OTP generator for the security function of the one-time authentication key method Although a module called a wireless terminal is used recently, an example of using the wireless terminal as an OTP generator for an online security function (for example, inputting an OTP generated by a wireless terminal to an online wired terminal) has been commercialized. In order to apply the OTP commercially available online to transactions (or payments) and wireless services, a national policy (eg, a two-factor policy in which the OTP generator must be logically separated from the communication terminal), or security This includes problems on elements (eg, lost wireless terminals, or changes in wireless carriers, etc.).

In addition, when the OTP is applied to the financial transaction (or payment) and the wireless service in the wireless field, when the OTP service fee is charged, the OTP service is activated despite the excellent security function of the OTP. It contains a difficult problem.

An object of the present invention for solving the above problems, when the one-time authentication key-based wireless security authentication processing in the mobile phone used by the customer, to transmit the advertising data to the mobile phone through a wireless communication network to process the wireless security authentication based on the one-time authentication key Advertising providing means for processing to be output to the advertising output area other than the one-time authentication area that the one-time authentication screen is output, and check the advertising revenue amount corresponding to the output of the advertising data in the advertising output area, and the advertising revenue amount of A wireless one-time authentication-based advertising management system having an amount calculation means for calculating a one-time authentication fee replacement amount and a fee processing means for processing to replace (or discount) the one-time authentication fee amount through the calculated one-time authentication fee replacement amount; In providing.

The mobile phone according to the present invention outputs a one-time authentication area in which a one-time authentication screen for processing the one-time authentication key-based wireless security authentication is output to a predetermined area of the mobile phone screen when the one-time authentication key-based wireless security authentication process using the mobile phone. And an output processor configured to divide and output an advertisement output region for outputting advertisement data from the one-time authentication region, an advertisement receiver for receiving advertisement data to be output to the advertisement output region through a wireless communication network, and the received advertisement. A one-time authentication key is generated and output through an advertisement output unit for processing data to be output to the advertisement output region divided from the one-time authentication region and the one-time authentication region divided with the advertisement output region, and output to the one-time authentication region. Through the one-time authentication key input screen (or interface) When the output one-time authentication key is input, characterized in that it comprises an authentication key processing unit for transmitting the input one-time authentication key to the server on the communication network to process one-time authentication key-based wireless security authentication.

On the other hand, the wireless one-time authentication-based advertising operation method according to the present invention, when the one-time authentication key-based wireless security authentication processing in the mobile phone used by the customer, the advertisement providing means by transmitting the advertising data to the mobile phone through a wireless communication network the one-time authentication key Processing to be output to an advertisement output region except for a one-time authentication region for outputting a one-time authentication screen for processing wireless security authentication, and an amount of advertising revenue corresponding to outputting the advertisement data to the advertisement output region by an amount calculating means; And confirming, calculating a one-time authentication fee replacement amount in the advertisement revenue amount, and processing the one-time authentication fee amount to be replaced (or discounted) through the calculated one-time authentication fee replacement amount in the fee processing means. Characterized in that .

On the other hand, it includes a recording medium recording a program for executing the above-described wireless one-time authentication-based advertising management method.

On the other hand, the wireless one-time authentication-based advertising management system according to the present invention, when the one-time authentication key-based wireless security authentication processing in the mobile phone used by the customer, by transmitting the advertising data to the mobile phone through a wireless communication network based on the one-time authentication key-based wireless security authentication Advertising providing means for processing to be output to the advertisement output area other than the one-time authentication area for outputting a one-time authentication screen for processing a; and confirms the amount of advertising revenue corresponding to the output of the advertising data in the advertisement output area, the advertisement And a fee processing means for processing a one-time authentication fee amount to be replaced (or discounted) through the calculated amount of the one-time authentication fee replacement amount and the calculated one-time authentication fee replacement amount. .

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. That is, each means described above is a server (or terminal) provided on the system shown in the following embodiments, or is a predetermined functional component provided in at least one or more servers (or terminals), or at least one or more servers. (Or a terminal) may be an association of at least two or more functional components. In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a system configuration for processing a one-time authentication key-based wireless security authentication through a one-time authentication region output by dividing the advertisement output region according to an embodiment of the present invention.

In more detail, Figure 1 is a one-time authentication key-based wireless security authentication processing through the wireless terminal 140 used by the customer, the wireless security authentication processing based on the one-time authentication key based on a certain area of the screen of the wireless terminal 140. After outputting a one-time authentication area for outputting a one-time authentication screen for processing, and outputting the advertisement output area for outputting the advertising data in the remaining areas other than the one-time authentication area, wireless security based on one-time authentication key through the one-time authentication area As a system configuration for processing authentication, those skilled in the art to which the present invention pertains, one-time through the one-time authentication area output by dividing and outputting the advertisement output area by referring to and / or modifying the present Figure 1 Various implementation methods can be inferred for the system configuration that handles authentication key based wireless security authentication. The would, in the present invention are made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 1.

Referring to FIG. 1, a system for processing a one-time authentication key-based wireless security authentication through a one-time authentication area divided and outputted from the advertisement output area may include an advertisement output area and at least one wireless terminal 140 through a wireless communication network. The program providing server 100 for providing a one-time authentication program for dividing the one-time authentication area and outputting it on the screen, and accessing the program providing server 100 through a wireless communication network to divide the advertisement output area and the one-time authentication area After downloading the one-time authentication program output on the screen and recording the recording medium, the one-time authentication screen for the one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 through the one-time authentication program. Output the one-time authentication area, except for the one-time authentication area After processing to output an advertisement output area for outputting the advertising data to the area, the wireless terminal 140 for generating a one-time authentication key for the one-time authentication key-based wireless security authentication through the one-time authentication area, and the wireless terminal ( Checking the validity of the one-time authentication key generated in 140 to at least one or more authentication server 105 for processing the one-time authentication key based wireless security authentication, and at least one wireless terminal 140 connected to the wireless communication network An advertisement server 135 providing advertisement data and at least one wireless server 125 providing various financial transactions (or payments) or authentication based additional services based on a result of validating the disposable authentication key. Characterized in that made.

Here, some of the advertising revenue corresponding to the advertisement provided to the wireless terminal 140 through the ad server 135 is replaced with a one-time authentication program usage fee (or one-time authentication key-based wireless security authentication fee) according to the advertisement output. It is preferable to be used.

According to the exemplary embodiment of the present invention, the advertisement server 135 is preferably a server of a communication company operating the wireless communication network and interoperates with the network operation system 130 provided on the wireless communication network.

According to another exemplary embodiment of the present invention, the advertisement server 135 is an advertisement provider side server associated with the wireless communication network, and may be connected to the network operation system 130 provided on the wireless communication network through a communication network. The present invention is not limited thereto.

In addition, the wireless server 125 has a financial server 110 having at least one financial transaction function according to the one-time authentication key-based wireless security authentication, and at least one payment settlement according to the one-time authentication key-based wireless security authentication. It is preferable to include at least one or more payment server 115 having a function, and a wireless web server 120 having various member authentication / service authentication / terminal authentication function according to the one-time authentication key-based wireless security authentication. Do.

In addition, the wireless communication network includes at least one base station, a control station for controlling the base station and at least one server (or device) for controlling and operating a wireless communication network including the base station and the control station ( 130), characterized in that made.

FIG. 2 is a diagram illustrating a program providing system for downloading and remotely mounting a one-time authentication program for dividing an advertisement output area and a one-time authentication area into a wireless terminal 140 and outputting the same on a screen.

More specifically, Figure 2 is a one-time authentication key-based wireless security authentication processing for the one-time authentication key-based wireless security authentication processing through the wireless terminal 140 used by the customer through a wireless communication network in the wireless security authentication processing system is required, the An advertisement output area for outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a certain area of the screen of the wireless terminal 140 and outputting advertisement data to other areas except the one-time authentication area. By processing the output, the system configuration for remote mounting and downloading a one-time authentication program for processing the wireless security authentication based on one-time authentication key using the wireless terminal 140, the present invention is Those skilled in the art, refer to this figure 2 It is possible to infer various implementation methods of downloading and remotely mounting a one-time authentication program for dividing the advertisement output area and the one-time authentication area into the wireless terminal 140 and outputting them on the screen by modifying and / or modifying the present invention. Includes all of the inferred implementation methods, and is not limited by the implementation method illustrated in FIG.

For example, the one-time authentication program is downloaded from the program providing system to a wired terminal (eg, a wired terminal used by a customer or a wired terminal used by a window employee) through a wired communication network, and then the wired terminal and the wireless terminal 140. It is possible to be mounted on the wireless terminal 140 through a cable communication to connect the), or it is possible to manufacture so that the one-time authentication program is mounted on the wireless terminal 140 from the manufacturer of the wireless terminal 140, The present invention is characterized in that it comprises all the possible inference methods.

Hereinafter, in FIG. 2, the wireless terminal 140 divides the advertisement output area and the one-time authentication area into a one-time authentication program that downloads and remotely mounts the component on the wireless security authentication processing system. Providing server 100 ", the program providing server 100 is implemented in the form of a server (or device) provided on the wireless security authentication processing system as shown in Figure 2, or the wireless terminal ( 140 is implemented in the form of a functional component provided in the authentication server 105 on the wireless security authentication processing system to download and remotely mount a one-time authentication program for dividing the advertisement output area and the one-time authentication area and output it on the screen. It is to be apparent that the invention is not limited thereby.

Referring to FIG. 2 according to an exemplary embodiment of the present invention, a program providing system for dividing the advertisement output region and a one-time authentication region and outputting the same on a screen is connected to the program providing server 100 through a wireless communication network and the advertisement. The wireless terminal 140 which downloads the one-time authentication program for dividing the output area and the one-time authentication area and outputs it on the screen, records the recording data on the recording medium, and is connected to the wireless terminal 140 through a wireless communication network. And a program providing server 100 which provides a one-time authentication program for dividing the advertisement output area and the one-time authentication area on the screen, and through the one-time authentication program provided to the wireless terminal 140. Including at least one or more functional configuration for the one-time authentication key-based wireless security authentication processing Characterized in that it further comprises an authentication server 105 provided in the wireless security authentication processing system.

The wireless terminal 140 is a mobile communication terminal connected to a Code Division Multiple Access (CDMA) / Wide-CDMA (WCDMA) based mobile communication network, a wireless communication terminal connected to an HSDPA based wireless communication network, or an IEEE 802.16x based communication. At least one wireless terminal 140 including at least one or more portable Internet terminals connected to the high-speed wireless Internet, characterized in that the wireless terminal 140 is at least provided by the program providing server 100 A function for outputting one or more program providing interface screens, inputting (or selecting) program request information for downloading and remotely mounting the one-time authentication program through the program providing interface screen, and transmitting the program request information to the program providing server 100. Configuration (e.g., browser program and communication functions) Preferable.

Those skilled in the art to which the present invention pertains can easily infer the features of the wireless terminal 140, and thus a detailed description thereof is omitted for convenience.

According to an embodiment of the present invention, the wireless communication network to which the wireless terminal 140 connects may include at least one of the CDMA based mobile communication network, the HSDPA based wireless communication network, or the IEEE 802.16x based high speed wireless Internet. Do.

The wireless communication network to which the wireless terminal 140 connects includes at least one or more base stations, a control station for controlling the base station, and at least one server (or apparatus) for controlling and operating a wireless communication network including the base station and the control station. Characterized in that it comprises a network operation system (130) including.

The base station is located at an end of the wireless communication network connecting a wireless section with at least one wireless terminal 140 located in a cell (eg, frequency reach) according to a wireless communication protocol defined in the wireless communication network. As a component, it is characterized in that the network operation system 130 to control and operate the radio terminal 140 through the control station.

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the base station connects a wireless section with at least one wireless terminal 140 based on the CDMA / WCDMA / GSM wireless protocol stack. It is desirable to.

According to another exemplary embodiment of the present invention, when the wireless communication network is an HSDPA based wireless communication network, the base station preferably connects a wireless section with at least one wireless terminal 140 based on the HSDPA wireless protocol stack.

According to another embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the base station includes at least one based on a wireless physical (PHY) layer and a media access control (MAC) layer of the IEEE 802.16x protocol. It is preferable to connect the wireless terminal 140 and the wireless section.

The control station controls at least one or more base stations, and is a component on a wireless communication network connecting the base station and the network operation system 130 by wired section. When the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, Preferably, the control station includes a base station controller (BSC). When the wireless communication network is an IEEE 802.16x based wireless communication network, the control station includes a packet access router (PAR). desirable.

The network operation system 130 controls at least one or more radio terminals 140 connectable to the radio communication network through at least one or more base stations in association with the control station, and at least one other radio with the radio terminal 140. Connects a communication channel (or call channel) with a terminal 140 or a server on a communication network, and calculates various communication charges and additional service use charges corresponding to a communication plan subscribed to by the wireless terminal 140. do.

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the network operation system 130 may include a mobile switching center (MSC) and a HLR (Mobile Switching Center) for processing circuit switching. Interworking function that provides circuit data service and / or packet data service for wireless data communication and connection with other networks in the network infrastructure for voice call and home location register (VLR). IWF), various message centers (e.g., short message center (SMC), multimedia message center (MMC), etc.) and various additional service server farms, and SGSN for processing packet exchange. (Serving GPRS Support Node), GGSN (Gateway GPRS Support Node) and RNC (Radio Network Controller) are preferably included.

According to another exemplary embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the network operation system 130 may include a home agent (HA) for mobility of IP to the wireless terminal 140, and Authentication, Authorization and Accounting (AAA) server for user authentication, Network Management Server (Network Management System), FA (Foreign Agent) interworking with the wireless network and at least one external wireless network, and the wireless terminal ( It is preferable to include a Dynamic Host Configuration Protocol (DHCP) server and DNS for allocating and registering Mobile IP (MIP).

According to the present invention, the program providing server 100 connects and manages a communication channel with the wireless terminal 140 through the wireless communication network to provide a web interface corresponding to the wireless terminal 140 and a wireless communication network. It characterized in that it comprises an interface unit 200, whereby the program providing server 100 has a function of a web server that is connected to the communication through the wireless terminal 140 and a wireless communication network.

According to an embodiment of the present invention, when the wireless terminal 140 is a mobile communication terminal to which a communication channel is connected through a CDMA / WCDMA-based wireless communication network, the interface unit 200 is connected to the wireless terminal 140 and the WAP. (Wireless Markup Language) or WML (Wireless Markup Language) or the like to connect a communication channel based on a (Wireless Application Protocol) or ME (Mobile Explorer) protocol (or a full-browsing based wireless Internet-based), and through the communication channel to the wireless terminal 140 It is preferable to perform a function of transmitting and outputting a program providing interface screen in the form of an HTML compatible document and receiving and processing program request information corresponding to the program providing interface screen from the wireless terminal 140.

According to an embodiment of the present invention, when the wireless terminal 140 is a wireless communication terminal to which a communication channel is connected through an HSDPA-based wireless communication network, the interface unit 200 is connected to the wireless terminal 140 and the HSDPA. A communication channel is connected based on a corresponding wireless protocol, a program providing interface screen in the form of an HTML-compatible document is transmitted to the wireless terminal 140 through the communication channel, and outputted, and the program is provided from the wireless terminal 140. It is preferable to perform a function of receiving and processing program request information corresponding to an interface screen.

According to another exemplary embodiment of the present invention, when the wireless terminal 140 is a wireless terminal 140 through which a communication channel is connected through an IEEE 802.16x based wireless communication network, the interface unit 200 may include the wireless terminal ( 140) connects a communication channel based on a wireless protocol corresponding to the IEEE 802.16 standard, transmits and outputs a program providing interface screen to the wireless terminal 140 through the communication channel, and outputs it from the wireless terminal 140. It is preferable to perform a function of receiving and processing predetermined program request information corresponding to the program providing interface screen.

According to the present invention, the program providing server 100 when the wireless terminal 140 is connected to the program providing server 100 through the interface unit 200, in conjunction with the interface unit 200, the wireless terminal And an interface providing unit 205 for generating (or extracting) and providing a program providing interface screen for inputting (or selecting) and transmitting program request information at 140.

The interface providing unit 205 is provided in the wireless terminal 140 when the wireless terminal 140 is connected to the program providing server 100 (or a one-time authentication program providing request) through the interface unit 200. A program providing interface screen for inputting (or selecting) program request information corresponding to a function configuration (for example, a browser program provided in the wireless terminal 140) and transmitting the program request information to the program providing server 100 through the wireless communication network. Or extract from a database (not shown), and provide the generated (or extracted) program providing interface screen to the wireless terminal 140 through the wireless communication network in association with the interface unit 200. It features.

Thereafter, the wireless terminal 140 inputs (or selects) program request information on the basis of the program providing interface screen, and transmits the input (or selected) program request information to the program providing server 100 through the wireless communication network. To send).

Here, the program request information is customer information requesting to provide the one-time authentication program to the wireless terminal 140 (for example, customer member information including member ID information and password information of the customer, or the name of the customer, Customer personal information including at least one of a social security number, an address, a contact number, etc.) and operating system (or platform) information provided in the wireless terminal 140 on which the one-time authentication program is mounted. For example, a wireless terminal 140 including at least one of a mobile identification number (MIN), an electronic serial number (ESN), USIM (Universal Subscriber Identity Module) information, a carrier information, a terminal model information, and the like. ) Information is preferably included.

According to the present invention, the program providing server 100 is a program D / B (225) for storing at least one or more program source or program file corresponding to the one-time authentication program to be provided to the wireless terminal 140, and the wireless When the program request information is received from the terminal 140, the one-time authentication program corresponding to the program request information is extracted or dynamically generated from the program D / B 225 and the wireless terminal through the interface unit 200. Characterized in that it comprises a program providing unit 210 provided to (140).

According to one embodiment of the invention, the program D / B 225 is characterized in that for storing a one-time authentication program file that can operate in the operating system (or terminal platform) provided in the wireless terminal 140, When the program request information is received from the wireless terminal 140, the program providing unit 210 extracts a one-time authentication program file matching the program request information from the program D / B 225. do.

According to another exemplary embodiment of the present invention, the program D / B 225 stores a one-time authentication program source capable of operating in an operating system (or terminal platform) provided in the wireless terminal 140. When the program request information is received from the wireless terminal 140, the program provider 210 extracts a one-time authentication program source matching the program request information from the program D / B 225, and Compile the extracted one-time authentication program source (Compile), characterized in that for dynamically generating a one-time authentication program to be provided to the wireless terminal (140).

Thereafter, the program providing unit 210 provides the extracted (or dynamically generated) one-time authentication program to the wireless terminal 140 through the wireless communication network through the interface unit 200 and remotely mounts the present invention. Those skilled in the art will be familiar with how to remotely mount the one-time authentication program (for example, a method of remotely mounting the wireless terminal 140 by attaching a program provider certificate). Detailed description thereof will be omitted for convenience.

The one-time authentication program provided to the wireless terminal 140 by the program providing unit 210 has a function of checking whether a one-time authentication key-based security authentication using the wireless terminal 140 is processed, and when checking the security authentication. Advertisement for outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key on a certain area of the screen of the wireless terminal 140, and outputs the advertisement data to the remaining areas except the one-time authentication area. A function of processing an output area to be output, and outputting a one-time authentication key generation screen (or interface) to a predetermined area on the one-time authentication area, and generating a one-time authentication key through the one-time authentication key generation screen (or interface), Output the one-time authentication key to a predetermined area on the one-time authentication area, the customer once A one-time authentication key input screen (or interface) for inputting an authentication key is output to a predetermined area on the one-time authentication area, and when the one-time authentication key-based security authentication is processed, the one-time authentication key end screen on a certain area on the one-time authentication area. (Or an interface), a function of receiving advertisement data to be output to an advertisement output region through the wireless communication network, and a function of processing the received advertisement data to be output to the advertisement output region. It features.

When the one-time authentication program is downloaded and remotely mounted to the wireless terminal 140 through the program providing unit 210, the wireless terminal 140 first executes the one-time authentication program to validate the one-time authentication program. Initiate the program diagnostic mode for authenticating, for this purpose, the program providing server 100 is connected to the one-time authentication program provided in the wireless terminal 140 to diagnose the validity of the one-time authentication program ( 215) characterized by comprising.

According to an exemplary embodiment of the present invention, the program diagnostic mode generates and transmits a one-time authentication key according to a one-time authentication key-based wireless security authentication procedure in the one-time authentication program provided in the wireless terminal 140, and the one-time authentication. It is desirable to include verifying that the key is valid.

Here, the one-time authentication key-based wireless security authentication, it is preferable that at least one or more of the one-time authentication key generation method of the time-sync (Challenge-Response) method (Time-Synchoronous).

According to the present invention, the program providing server 100 is downloaded to the wireless terminal 140 and the one-time authentication management information corresponding to the remote-mounted one-time authentication program and the one-time authentication program request the wireless terminal 140 Characterized in that it comprises the information storage unit 220 for storing the information stored in the one-time authentication management D / B 230 by linking the customer information and the wireless terminal 140 information requested to be mounted on.

According to the method of the present invention, when the validity of the one-time authentication program is confirmed as the result of the diagnosis of the diagnosis unit 215, the one-time authentication downloaded to the wireless terminal 140 and remotely mounted. Preferably, the management information, the customer information corresponding to the customer who has transmitted the program request information, and the wireless terminal 140 information are cooperatively processed and stored in a cooperative process with a predetermined one-time authentication management D / B 230. The one-time authentication management information, the customer information and the wireless terminal 140 information stored in the one-time authentication management D / B 230 is used for the one-time authentication key-based wireless security authentication processing in a wireless security authentication processing system. do.

3 is a diagram showing the configuration of the wireless terminal 140 information with a one-time authentication program according to the method of the present invention.

In more detail, FIG. 3 illustrates that when the wireless terminal 140 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, the wireless terminal 140 is processed in association with the one-time authentication management information for the one-time authentication-based wireless security authentication. Regarding the configuration of the wireless terminal 140 information provided in the one-time authentication management D / B 230, those of ordinary skill in the art to which the present invention pertains, refer to and / or modify the present figure 3 for the disposable Various implementation methods for the configuration of the information of the wireless terminal 140 having the authentication program may be inferred. However, the present invention includes all the implementation methods inferred above, and the technical description is given only by the implementation method shown in FIG. Features are not limited.

For example, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 3 so that the wireless terminal 140 is an HSDPA-based wireless communication terminal in addition to the mobile communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230, and also omitted for convenience in the configuration of the wireless terminal 140 shown in FIG. Inferred information items will be inferred, and it will be apparent that the present invention includes all such inferred methods of implementation.

Referring to FIG. 3, the wireless terminal information includes at least one wireless terminal 140 of the telephone number MIN, serial number ESN, and USIM information USIM of the wireless terminal 140 equipped with the one-time authentication program. And unique information, and may further include platform information, carrier information, and terminal model information for the wireless terminal 140.

4 is a diagram illustrating one-time authentication management information provided to the wireless terminal 140 according to an embodiment of the present invention.

In more detail, Figure 4 is a mobile terminal 140 shown in the program providing system shown in Figure 2 is a mobile communication terminal, a one-time authentication key in a time-synchronous (Time-Synchoronous) method to the wireless terminal 140 When providing and mounting a one-time authentication program to generate, showing the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230 shown in the program providing system shown in Figure 2, the present invention Those skilled in the art will be able to infer various implementation methods for constructing the one-time authentication management information provided to the wireless terminal 140 by referring to and / or modifying the present invention. It is made to include all the implementation methods inferred, the technical features are not limited only to the implementation method shown in FIG.

For example, those skilled in the art to which the present invention pertains may refer to, and / or modify, the wireless terminal 140 in addition to the mobile communication terminal HSDPA-based wireless communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the one-time authentication management information configuration stored in the one-time authentication management D / B 230, and also the information omitted for convenience in the one-time authentication management information configuration shown in FIG. It will be apparent that the items will be inferred and the present invention includes all such inferred methods of implementation.

According to the present invention, the one-time authentication program mounted on the wireless terminal 140 through the program providing system shown in FIG. 2 is mounted on the wireless terminal 140 owned by the customer to generate a one-time authentication key. By doing so, the one-time authentication program is characterized in that it comprises a program code that can be driven or operated in the customer wireless terminal 140 platform. For example, if the wireless terminal 140 is provided with a WIPI (Wireless Internet Platform for Interoperability) platform, the one-time authentication program includes a program code operating on a WIPI basis, and other platforms (eg, GVM / SK- If VM / BREW is installed), it includes program code that runs on the platform.

In FIG. 4, the one-time authentication program is provided in the program D / B 225 shown in FIG. 2 in the form of a precompiled program, or the program shown in FIG. 2 in the form of source code to be compiled. It is characterized in that stored in the D / B (225).

When the one-time authentication program is provided in the program D / B 225 in the form of a precompiled program according to an embodiment of the present invention, the wireless terminal 140 through the wireless communication network in the program providing server 100 At the time of providing and mounting the one-time authentication program, at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a randomly generated number in the program providing server 100) ) Together with the wireless terminal 140 to be stored in a storage device (eg, a memory unit of the wireless terminal 140, or a chip memory unit provided in an IC chip mounted or detached from the wireless terminal 140). Preferably, the disposable authentication program mounted on the wireless terminal 140 generates a one-time authentication key. Program, it is preferable to extract at least one one-time authentication key generation information from the storage device, and generating a one-time authentication key based on the one-time authentication key generation information.

When the one-time authentication program is stored in the program D / B 225 in the form of source code to be compiled according to another embodiment of the present invention, the program providing server 100 to the wireless terminal 140 At the time of providing the one-time authentication program, the one-time use of at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a number randomly generated by the program providing server 100) It is assigned to the one-time authentication key generation information variable included in the authentication program source code, and the one-time authentication program is compiled by compiling the one-time authentication program source code in which at least one or more one-time authentication key generation information is assigned to the one-time authentication key generation information variable. A one-time authentication program generated dynamically as described above. Preferably, a RAM is provided to the wireless terminal 140 through a wireless communication network and mounted thereon. Then, at the time when the one-time authentication program mounted on the wireless terminal 140 generates a one-time authentication key, the one-time authentication program is It is preferable to generate a one-time authentication key based on the one-time authentication key generation information substituted in the one-time authentication program internal variable.

According to another exemplary embodiment of the present invention, even when at least one or more one-time authentication key generation information is substituted into the one-time authentication program as described above, the dynamically generated one-time authentication program to the wireless terminal 140 according to the intention of a person skilled in the art. At the time of providing and mounting, at least one or more other disposable authentication key generation information is provided together with the wireless terminal 140 to be stored in a storage device, and then the one-time authentication program mounted on the wireless terminal 140 is disposable. At the time of generating the authentication key, it is possible to generate a one-time authentication key using both the one-time authentication key generation information provided in the one-time authentication program and the one-time authentication key generation information provided in the storage device, thereby The present invention is not limited.

Referring to FIG. 4, the one-time authentication management information provided to the wireless terminal 140 through the program providing system illustrated in FIG. 2 is an operating system (or platform) for the wireless terminal 140 on which the one-time authentication program is mounted. Information), a version of the one-time authentication program, an authentication key generation algorithm, at least one or more one-time authentication key generation information, or a one-time authentication key update period. It may be further included, but the present invention is not limited by the information item.

The operating system (or platform) information included in the one-time authentication management information includes a type of operating system (or platform) included in the wireless terminal 140 equipped with the one-time authentication program through the program providing system shown in FIG. 2. Preferably, the operating system (or platform) information is used to identify the operating system (or platform) of the one-time authentication program to be provided to the wireless terminal 140 when the one-time authentication program is upgraded.

The version included in the one-time authentication management information includes version information of the one-time authentication program for each platform to be provided to the wireless terminal 140.

According to the embodiment of the present invention, even if the same type of one-time authentication program (for example, one-time authentication program operating on the same platform), the type or version of the authentication key generation algorithm applied according to the version of the one-time authentication program may be different. As a result, since the one-time authentication key generated by the one-time authentication program will also vary, the version information provides information for accurately determining the one-time authentication program mounted on the wireless terminal 140. By the version information of the one-time authentication key agent program it is possible to minimize the one-time authentication key authentication error that may occur in the process of authenticating the one-time authentication key generated in the wireless terminal 140.

The authentication key generation algorithm included in the one-time authentication management information includes hashing algorithm information applied to the one-time authentication program or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating authentication keys are MD4, MD5, SHA, etc., and a hashing algorithm (eg, SHA-1 hashing algorithm modified from SHA) may be further modified according to the application field. Etc.) are used.

The one-time authentication key generation information included in the one-time authentication management information is information for generating a one-time authentication key of the time synchronization method, referring to FIG. 4, the one-time authentication key generation information is a time when the one-time authentication key is generated ( Or time) as first generation information, and is unique to the wireless terminal 140 on which the secret key value corresponding to a value randomly generated by the program providing server 100 or the one-time authentication program is mounted according to an implementation method. It is preferable to use the given MIN / ESN as the second generation information or the third generation information.

Referring to an embodiment of the present invention, when the one-time authentication program uses the MIN / ESN of the wireless terminal 140 as the one-time authentication key generation information for generating the one-time authentication key, the MIN / ESN is a one-time authentication as it is. The MIN / ESN may be used as key generation information, and the MIN / ESN has an excessively large value to prevent the one-time authentication program from overflowing in the process of generating the one-time authentication key. It is possible to convert the data to a value within a certain size by applying a hash function to the device, which is determined by the intention of a person skilled in the art or the computing power of the wireless platform.

The one-time authentication key update period of the one-time authentication management information is a time interval in which the one-time authentication key generated by the one-time authentication program is volatilized and invalidated in time when the authentication key generation algorithm follows the time synchronization scheme. If it is difficult to transmit the time (or time) information of the one-time authentication key generated with the one-time authentication key in the process of transmitting the one-time authentication key to the authentication server 105 at 140, the wireless terminal ( 140 is used for synchronizing the time (or time) generation of the one-time authentication key generation between the authentication server 105 for a predetermined time. That is, the one-time authentication key generated by the one-time authentication program is transmitted to the authentication server 105 within the one-time authentication key update period, the authentication server 105 is a one-time authentication key authentication code corresponding to the one-time authentication key Should be created. That is, after the one-time authentication key is generated in the one-time authentication program provided in the wireless terminal 140, when the one-time authentication key authentication code is generated within the one-time authentication key update period in the authentication server 105, the one-time authentication The validity of the key is authenticated. Therefore, the one-time authentication key update period is a time required to provide the one-time authentication key generated in the wireless terminal 140 to the wireless terminal 140, and to transmit the one-time authentication key to the authentication server 105 It is preferable to consider the time required and the time required to generate a one-time authentication key authentication code in the authentication server 105, and the like.

According to another embodiment of the present invention, the authentication key generation algorithm follows a time synchronization scheme and transmits the time (or time) information of the one-time authentication key generated by the one-time authentication program to the authentication server 105. If it is easy, the one-time authentication key update period may be omitted, or may be set at very short time intervals.

5 is a view showing the one-time authentication management information provided to the wireless terminal 140 according to another embodiment of the present invention.

In more detail, in FIG. 5, the wireless terminal 140 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, and a one-time authentication key is a challenge-response method to the wireless terminal 140. When providing and equipped with a one-time authentication program for generating a, showing the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230 shown in the program providing system shown in Figure 2, the present invention Those skilled in the art will be able to infer various implementation methods for constructing one-time authentication management information provided to the wireless terminal 140 by referring to and / or modifying the present invention. Is made including all the inferred implementation method, the technical features are not limited only to the implementation method shown in FIG.

For example, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 5 so that the wireless terminal 140 is an HSDPA-based wireless communication terminal in addition to the mobile communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230, and also the information omitted for convenience in the one-time authentication management information configuration shown in FIG. It will be apparent that the items will be inferred and the present invention includes all such inferred methods of implementation.

According to the present invention, the one-time authentication program mounted on the wireless terminal 140 through the program providing system shown in FIG. 2 is mounted on the wireless terminal 140 owned by the customer to generate a one-time authentication key. By doing so, the one-time authentication program is characterized in that it comprises a program code that can be driven or operated in the customer wireless terminal 140 platform. For example, if the wireless terminal 140 is provided with a WIPI (Wireless Internet Platform for Interoperability) platform, the one-time authentication program includes a program code operating on a WIPI basis, and other platforms (eg, GVM / SK- If VM / BREW is installed), it includes program code that runs on the platform.

In FIG. 5, the one-time authentication program is provided in the program D / B 225 shown in FIG. 2 in the form of a precompiled program, or the program shown in FIG. 2 in the form of source code to be compiled. It is characterized in that stored in the D / B (225).

According to an embodiment of the present invention, the one-time authentication program is provided in the program D / B 225 in the form of a pre-compiled program, and the one-time authentication program is for generating the one-time authentication key from the authentication server 105. And a challenge value as one-time authentication key generation information, wherein the program providing server 100 provides the one-time authentication program to the customer wireless terminal 140 through a wireless communication network, and then mounts the challenge value. At the time when the one-time authentication program mounted on the wireless terminal 140 generates the one-time authentication key, the one-time authentication program preferably generates a one-time authentication key based on the challenge value received from the authentication server 105. Do.

According to another embodiment of the present invention, when the one-time authentication program is provided in the program D / B 225 in the form of a pre-compiled program, the wireless terminal 140 through the wireless communication network in the program providing server 100. At the time when the one-time authentication program is provided and mounted, at least one one-time authentication key generation information corresponding to the one-time authentication program (eg, a secret key corresponding to a random number generated by the program providing server 100) Value) together with the wireless terminal 140 and stored in a storage device (eg, a memory unit of the wireless terminal 140, or a chip memory unit provided in an IC chip mounted or detached from the wireless terminal 140). Preferably, when the one-time authentication program mounted on the wireless terminal 140 generates a one-time authentication key, the one-time authentication program Extracts the challenge value received from the authentication server 105 and at least one-time one-time authentication key generation information from the storage device, and generates a one-time authentication key based on the one-time authentication key generation information.

According to another embodiment of the present invention, when the one-time authentication program is stored in the one-time authentication management D / B 230 in the form of source code to be compiled, the wireless terminal 140 in the program providing server 100. At the time of providing the one-time authentication program with a), at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a number randomly generated by the program providing server 100) Is substituted into the one-time authentication key generation information variable included in the one-time authentication program source code, and the one-time authentication program source code in which at least one or more one-time authentication key generation information is substituted into the one-time authentication key generation information variable Create a one-time authentication program, dynamically generated one-time as described above It is preferable to provide an authentication program to the wireless terminal 140 through a wireless communication network, and to mount the authentication program. At this point, the one-time authentication program mounted on the wireless terminal 140 generates a one-time authentication key. It is preferable to generate a one-time authentication key based on the challenge value received from the authentication server 105 and the one-time authentication key generation information substituted in the one-time authentication program internal variable.

According to another exemplary embodiment of the present invention, even when at least one or more one-time authentication key generation information is substituted into the one-time authentication program as described above, the dynamically generated one-time authentication program to the wireless terminal 140 according to the intention of a person skilled in the art. At the time of providing and mounting, at least one or more other one-time authentication key generation information is provided to the wireless terminal 140 and stored in a storage device, and the one-time authentication program mounted on the wireless terminal 140 is a one-time authentication. At the time of generating the key, the one-time authentication program is a challenge value received from the authentication server 105, the one-time authentication key generation information provided in the one-time authentication program and the one-time authentication key generation information provided in the storage device It is possible to generate a one-time authentication key, etc., whereby the present invention It does not specified.

Referring to FIG. 5, the one-time authentication management information provided to the wireless terminal 140 through the program providing system illustrated in FIG. 2 is an operating system (or platform) for the wireless terminal 140 on which the one-time authentication program is mounted. Information, a version of the one-time authentication program, an authentication key generation algorithm, and at least one or more one-time authentication key generation information, which may further include at least one or more information items according to the intention of a person skilled in the art. The present invention is in no way limited by the terms.

The operating system (or platform) information included in the one-time authentication management information includes a type of operating system (or platform) included in the wireless terminal 140 equipped with the one-time authentication program through the program providing system shown in FIG. 2. Preferably, the operating system (or platform) information is used to identify the operating system (or platform) of the one-time authentication program to be provided to the wireless terminal 140 at the time of upgrading the one-time authentication program.

The version included in the one-time authentication management information includes version information of the one-time authentication program for each platform to be provided to the wireless terminal 140.

According to the embodiment of the present invention, even if the same type of one-time authentication program (for example, one-time authentication program operating on the same platform), the type or version of the authentication key generation algorithm applied according to the version of the one-time authentication program may be different. As a result, since the one-time authentication key generated by the one-time authentication program will also vary, the version information provides information for accurately determining the one-time authentication program mounted on the wireless terminal 140. By the version information of the one-time authentication key agent program it is possible to minimize the one-time authentication key authentication error that may occur in the process of authenticating the one-time authentication key generated in the wireless terminal 140.

The authentication key generation algorithm included in the one-time authentication management information includes hashing algorithm information applied to the one-time authentication program or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating authentication keys are MD4, MD5, SHA, and the like, and a hashing algorithm modified from the hashing algorithm according to an application field (for example, SHA-1 hashing algorithm modified from SHA). Is being used.

The one-time authentication key generation information included in the one-time authentication management information is information for generating a one-time authentication key of the time synchronization method, referring to FIG. 5, the one-time authentication key generation information is provided in the wireless terminal 140. At the time when the one-time authentication program generates the one-time authentication key, the challenge value provided to the wireless terminal 140 through the authentication server 105 is used as first generation information, and the program providing server 100 according to the implementation method. Secret key value corresponding to the randomly generated value) or MIN / ESN uniquely assigned to the wireless terminal 140 on which the one-time authentication program is mounted, is used as the second generation information or the third generation information. Do.

According to the method of the present invention, the challenge value is an arbitrary value randomly generated by the authentication server 105 at the time when the one-time authentication program included in the wireless terminal 140 generates the one-time authentication key. The authentication server 105 transmits to the wireless terminal 140 until a one-time authentication key (for example, a response corresponding to the challenge) generated based on the challenge value is received from the wireless terminal 140. It is preferable to maintain a challenge value, and when the one-time authentication key is received, it is preferable to generate the one-time authentication key authentication code based on the challenge value to authenticate the received one-time authentication key.

Referring to an embodiment of the present invention, when the one-time authentication program uses the MIN / ESN of the wireless terminal 140 as the one-time authentication key generation information for generating the one-time authentication key, the MIN / ESN is a one-time authentication as it is. The MIN / ESN may be used as key generation information, and the MIN / ESN has an excessively large value to prevent the one-time authentication program from overflowing in the process of generating the one-time authentication key. It is possible to convert the data to a value within a certain size by applying a hash function to the device, which is determined by the intention of a person skilled in the art or the computing power of the wireless platform.

FIG. 6 is a diagram illustrating a process of downloading and remotely mounting a one-time authentication program for dividing the advertisement output area and one-time authentication area into a wireless terminal 140 and outputting it on a screen.

In more detail, FIG. 6 is a one-time use for dividing the advertisement output area and the disposable authentication area from the program providing server 100 to the wireless terminal 140 and outputting them on the screen through the program providing system shown in FIG. Regarding a process of downloading and remotely mounting an authentication program, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify the drawing 6 and the advertisement output area to the wireless terminal 140. Although various implementation methods of downloading and remotely mounting a one-time authentication program that divides the one-time authentication area and outputs it on the screen may be inferred, the present invention includes all of the inferred implementation methods and is shown in FIG. It is not limited by the method.

Hereinafter, in FIG. 6, the wireless terminal 140 illustrated in FIG. 2 is referred to as a “terminal” for convenience, and the program providing server 100 illustrated in FIG. 2 is referred to as a “server” for convenience.

Referring to FIG. 6, the terminal accesses the server through a wireless communication network, requests the server to download and remotely mount a one-time authentication program that divides the advertisement output area and the one-time authentication area on the screen and outputs the result. 600, correspondingly, the server extracts (or generates) a program providing interface screen for providing the one-time authentication program to the wireless terminal 140 and provides it to the terminal (605).

Thereafter, the terminal inputs (or selects) program request information through the program providing interface screen (610), and transmits the input (or selected) program request information to the server through the wireless communication network (615). In response, the server extracts (or dynamically generates) a one-time authentication program matching the program request information from the program D / B 225 (620), and extracts the one-time authentication (or dynamically generated). The program is remotely mounted by providing the program to the terminal through the wireless communication network.

If the one-time authentication program is remotely mounted to the terminal (630), the terminal executes the one-time authentication program to initiate a diagnostic mode for the one-time authentication program (635), and the terminal correspondingly the one-time authentication Generate a validity diagnostic information through a program and transmit it to the server through the wireless communication network (640), the server receives and read the received validity diagnostic information to confirm the validity of the one-time authentication program (645)

According to an embodiment of the present invention, if the diagnostic mode for the one-time authentication program is generated and transmitted according to the one-time authentication key-based wireless security authentication procedure in the one-time authentication program provided in the wireless terminal 140, It is preferable that the one-time authentication key comprises a check that is valid.

If the validity of the one-time authentication program is not confirmed (650), the server generates program diagnostic error information and transmits it to the terminal through the wireless communication network (655), and then provides the program providing interface screen to the terminal. Receiving program request information to receive, and extracts (or dynamically generated) the one-time authentication program corresponding to the received program request information and repeats the process of remote mounting to the terminal.

On the other hand, if the validity of the one-time authentication program is confirmed (650), the server is a one-time authentication management information corresponding to the one-time authentication program mounted on the terminal, and the customer information and wireless corresponding to the customer who transmitted the program request information The terminal 140 stores information in the one-time authentication management D / B 230 by cooperatively processing the information, and then stores the one-time authentication management information, the customer information, and the wireless terminal stored in the one-time authentication management D / B 230. The information is characterized in that it is used for the one-time authentication key-based wireless security authentication processing in a wireless security authentication processing system.

7 is a diagram illustrating a function of a wireless terminal 799 having a one-time authentication key-based wireless security authentication processing function according to an embodiment of the present invention.

In more detail, in FIG. 7, when the wireless terminal 799 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, a one-time authentication key-based wireless security authentication process is performed through a wireless terminal 799 used by a customer. If necessary, a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key is output to a predetermined area of the screen of the wireless terminal 799, and the advertisement data is recorded in the remaining areas except the one-time authentication area. By showing that the advertisement output area to output the output, showing a wireless terminal (799) function configuration having a one-time authentication program for processing the one-time authentication key-based wireless security authentication using the wireless terminal (799), the present invention Those of ordinary skill in the art, the one-time authentication by referring to and / or modified in this figure 7 Various implementation methods for the configuration of the function of the wireless terminal 799 having the wireless security authentication processing function may be inferred, but the present invention includes all the implementation methods inferred, and is illustrated in FIG. The technical features are not limited only by the method.

For example, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 3 so that the wireless terminal 799 is an HSDPA based wireless communication terminal in addition to the mobile communication terminal, or IEEE 802.16.x. In the case of a portable Internet terminal, it is possible to infer the configuration of a wireless terminal 799 function having the one-time authentication key-based wireless security authentication processing function, and the present invention is apparent that the present invention includes all possible inference methods. It is a bar.

The wireless terminal 799 for providing a mobile communication service according to an embodiment of the present invention, in terms of hardware, an external body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery 793. And a predetermined modem chip (e.g., US Qualcomm) having internal functions such as a code division multiple access (CDMA) modem, a central processing unit / micro processing unit (CPU / MPU), a vocoder, and the like. Qualcomm) 's MSM series modem chips), various memory elements, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals Isolator to prevent return, RF / IF SAW filter to remove unwanted out-of-band unwanted signal, frequency up circuit of transmission path, frequency down of reception path Including a circuit circuit, a Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to a reference clock source, a UHF frequency synthesizer used as a local signal for frequency up-down conversion, and a codec chip for converting an analog voice signal into a digital signal. The internal components are gradually integrated in the modem chip, and the modem chip provides various multimedia services and / or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 7, the wireless terminal 799 having the one-time authentication key-based wireless security authentication processing function structurally outputs a control unit 700 corresponding to the modem chip and a liquid crystal display (LCD). A unit 755, a sound processing unit 760 corresponding to a microphone / speaker, a key input unit 763 corresponding to a keypad, a wireless processing unit 797 corresponding to an antenna and various RF modules, and a nonvolatile memory. The memory unit 795 and a battery 793 for supplying a predetermined power are provided.

In addition, the wireless terminal 799 is an IC chip 770 mounted on or detached from the wireless terminal 799 to provide various financial (or payment) services and / or various additional services corresponding thereto (eg, USIM ( Universal Subscriber Identity Module, or financial IC chip 770, etc.) and an IC chip 770 reader unit 765 for reading / writing at least one or more information (or data) on the IC chip 770. It is preferable to make.

In addition, the wireless terminal 799 further includes a camera unit (not shown) that reads predetermined image information to provide various multimedia services and / or various additional services corresponding thereto, and / or a predetermined short range device. And a near field communication unit (not shown) for connecting a near field communication channel with each other.

The control unit 700 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, and provides a predetermined program routine for providing a function specific to the radio terminal 799 from a predetermined memory device. (Routine) and / or a bus (BUS) for inputting and outputting program data, and a predetermined electronic circuit (or integrated circuit) provided for this, characterized in that the memory unit 795 and / or in software A generic term for program routines and / or program data loaded from the memory device (or chipset) into the execution memory and processed by the processor to perform a specific function (hence, the one-time authentication key based wireless security authentication processing function. For convenience, a predetermined program routine recorded on the recording medium of the wireless terminal 799 is provided in the control unit 700 for convenience. The program routine included in the controller 700 is basically an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management). Routine, handoff routine, etc.), and various functional configurations intended to be implemented in the wireless terminal 799 by the control unit 700 are realized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 799, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in the 700 and arithmetic processing by the processor, the wireless terminal 799 converts the system setting detailed state, the pilot channel acquisition detailed state, the sync channel acquisition detailed state, and the timing change according to a predetermined booting procedure. The operation mode corresponding to the "mobile station initialization state" including the detailed state is set.

After performing the booting procedure, the operating system routine (not shown), one or more system management routines (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 700 and loaded into the processor. By the arithmetic processing, the radio terminal 799 is set to an operation mode corresponding to a "mobile station call waiting state", "system access state", "call channel state", etc., thereby enabling mobile communication-based radio connection and call processing ( Call Processing) procedure.

The screen output unit 755 is a function configuration unit for confirming operation of each operation mode of the wireless terminal 799 and a corresponding operation state, and at least one including an LCD provided in the wireless terminal 799. A screen output device and a driver for driving the screen output device, and output at least one key data input through the key input unit 763 in association with the control unit 700, and / Or outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 799, and / or provided in the wireless terminal 799 (or At least one content (eg, text content, image content, multimedia content) to be downloaded is output.

According to the exemplary embodiment of the present invention, the screen output unit 755 performs a function of screen output means for outputting various function processing screens corresponding to the one-time authentication key-based wireless security authentication processing function and a function processing result screen. desirable.

The sound processor 760 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 799. The sound processor 760 decodes at least one or more encoded sound data and is provided in the wireless terminal 799. And a vocoder and a codec for encoding and encoding a sound signal inputted through a microphone provided in the wireless terminal 799 and / or the microphone provided in the wireless terminal 799. .

According to an exemplary embodiment of the present invention, the sound processor 760 may include a sound corresponding to a predetermined ring back tone through the speaker in an operation mode corresponding to the “system access state” among the operation modes of the wireless terminal 799. It is preferable to decode and output data, and / or to encode and input a predetermined voice signal through a microphone in an operation mode corresponding to the "call channel state", or to decode and output a predetermined voice signal through a speaker. .

In addition, the sound processor 760 may play at least one sound content and / or multimedia content provided (or downloaded) by the wireless terminal 799 in at least one operation mode including the "mobile station call waiting state." In this case, it is preferable to decode and output sound data corresponding to the reproduced content.

According to the exemplary embodiment of the present invention, the sound processor 760 preferably performs a function of sound output means for decoding and outputting sound data corresponding to the one-time authentication key-based wireless security authentication processing function.

The key input unit 763 includes a predetermined key having at least one key button including a predetermined number key and / or a character key and / or a function key. And a driver for driving the key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device. It is characterized by.

According to the present invention, when a predetermined key input signal is detected from a predetermined key button provided in the key input device in a predetermined input mode and / or at least one or more operation modes controlled by the control unit 700, the key. The input unit 763 may generate a predetermined key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the detected key input signal, and provide the generated key event to the controller 700. The controller 700 reads predetermined key data corresponding to the key event in the current input mode and / or operation mode of the wireless terminal 799 (eg, in a specific key event in each input mode and / or operation mode). Read key data from the key table that stores (manages) at least one key data corresponding to a network event; and / or And a command for executing a predetermined function matched with the vent.

According to the method of the present invention, the key input unit 763 inputs a predetermined telephone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 799, and enters a predetermined " By inputting a "call" button, it is preferable to change the operation mode of the radio terminal 799 to an operation mode corresponding to the "system access state".

In addition, the key input unit 763 inputs a predetermined function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" among the operation modes of the radio terminal 799, thereby providing the radio terminal. It is preferable to execute the various functions provided in 799.

According to an embodiment of the present invention, the key input unit 763 preferably performs a function of key input means for inputting at least one or more key data corresponding to the one-time authentication key-based wireless security authentication processing function.

The wireless processor 797 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the wireless terminal 799 operates based on CDMA / WCDMA, and includes a CDMA modem and various RF modules (eg, duplexer filter, power). Amplifiers, High Power Amplifiers (HPAs), Isolators, RF / IF SAW Filters, Frequency Up-Circuits, Frequency Down-Conversion Circuits, VCTCXOs, UHF Frequency Synthesizers, etc. for Reference Clock Sources) and Antennas And a location registration and / or slot mode and / or power control corresponding to each operation mode of the wireless terminal 799 in connection with the control unit 700. Control and / or hand-off and / or call processing procedures.

According to an embodiment of the present invention, the wireless processing unit 797 is a radio frequency signal transmission / reception function corresponding to the one-time authentication key based wireless security authentication processing function (eg, antenna control, modulation, synthesis, amplification and / or radio frequency signal). Or performing filtering or the like).

In particular, the wireless processing unit 797 processes or processes information or signals transmitted from the wireless terminal 799 to the base station in the CDMA stack or receives the CDMA stack from the base station for the one-time authentication-based wireless security authentication processing. It is preferable to include a function for reading a predetermined information or signal from the.

The IC chip 770 reader unit 765 is mounted or detached from the wireless terminal 799 through the IC chip 770 standard including ISO / IEC 7816 and / or ISO / IEC 14443. (E.g., a financial IC chip 770 or USIM, etc.) to exchange at least one or more information (or data or instructions), and a contact IC card reader corresponding to the ISO / IEC 7816 standard, And / or a contactless IC card reader corresponding to the ISO / IEC 14443 standard, wherein the IC card reader comprises at least one information with the IC chip 770 through an application protocol data unit (APDU). (Or data, or command).

Referring to the standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip 770 mounted or detached from the customer wireless terminal may include a power supply (VCC), a reset signal (RST), and a clock signal. Communication with the IC chip 770 reader 765 via contact points such as (CLK), ground (GND), programming power supply (VPP), and / or input / output (I / O) (e.g., command or data exchange, etc.) A processor unit 775 including an input / output interface 773, at least one computing element including a central processing unit (CPU), a micro process unit (MPU), a coprocessor, and / or the like, and a ROM. It consists of a chip memory unit 780 made of at least one or more memory elements, including (Read Only Memory), RAM (Random Access Memory), EEPROM (Electrically Erasable and Programmable Read Only Memory), FM (Flash Memory), etc. In particular, at least one memory element (eg, The ROM stores a Chip Operating System (COS) for managing and operating the internal resources of the IC card, and the IC chip 770 reader unit (VCC) is provided through a power supply (VCC) contact point of the input / output interface 773. When a predetermined power is supplied from 765, the COS stored in the chip memory unit 780 is loaded into a predetermined execution memory to control the overall operation of the IC chip 770, and to clock the clock signal CLK contact point. Control information or data exchange between the IC chip 770 and the IC chip 770 reader unit 765 through an APDU (Application Protocol Data Unit) based on a frequency (eg, 3.57 MHz or 4.9 MHz).

According to the present invention, the chip memory unit 780 of the IC chip 770 stores at least one IC chip 770 corresponding to a card application for providing the USIM function (or the financial IC chip 770 function). Characterized in that the information is stored, wherein the IC chip 770 storage information is stored to store a data set corresponding to predetermined information or data that is read, read and / or used by a processor provided in the customer wireless terminal. A program routine (for example, a Java card) that is driven or executed by a processor 790 and an arithmetic function of the processor unit 775 and an instruction set provided by a COS, and used by a processor included in the customer wireless terminal. (Javacard) is a Java Applet) that includes an instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit 775. It is characterized in that comprises a processing unit (785) for the application made.

Here, in particular, the processing unit 785 reads an instruction provided from a processor provided in the customer wireless terminal via the input / output interface 773 via an APDU, and then, based on the read instruction, the processing unit 785 reads the instruction to the storage unit 790. Read or record at least one or more information or data stored, and provide the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface 773 through the APDU. do.

According to an embodiment of the present invention, the storage unit 790 stores at least one unique information of the wireless terminal 799 for the one-time authentication key based wireless security authentication processing function, wherein the storage unit ( The unique information of the wireless terminal 799 stored in the 790 may be a wireless terminal 799 telephone number assigned to the wireless terminal 799, USIM information, IC chip 770 unique information, a dynamic (or fixed) IP address, or the like. It is preferable to include at least one.

According to a preferred embodiment of the present invention, the chip memory unit 780 of the IC chip 770 includes a security structure based on ISO / IEC 10202. Accordingly, the chip memory unit 780 may include a CSN ( And a protection area for storing secret information such as a Chip Serial Number), a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip 770 storage information is preferably stored in an area excluding the protection area and the COS control area.

In addition, according to ISO / IEC 7816 and / or ISO / IEC 14443 ICC standards, the chip memory unit 780 may include one master file (MF) corresponding to a root file, and the master file. ATR (Answer To Reset) including function information on at least one stored information at a lower portion, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed below the dedicated file. It includes a file structure consisting of an element file (EF) containing the actual information and / or data for the smart card service, the IC chip 770 storage information for the present invention also includes the file structure It is made to include.

According to an embodiment of the present invention, if the IC chip 770 is the financial IC chip 770 (or USIM having financial information), the IC chip 770 storage information may be shared with an electronic bankbook. It is preferable to include a financial account (or financial product) means including a network, and / or credit card payment method, debit card payment method, check card payment method, It is preferable to include at least one prepaid card payment means, electronic wallet (Electronic Wallet) payment means.

The memory unit 795 corresponds to a storage medium for storing at least one or more information (or data) in the wireless terminal 799, and / or a recording medium for recording program codes corresponding to at least one or more program routines. General term for nonvolatile memory, including read only memory (ROM) corresponding to the read only memory, flash memory (FM), electrically erasable and programmable read only memory (EEPROM), and the like. Characterized in that made.

According to an embodiment of the present invention, the ROM information of the nonvolatile memory is not to be stored, and the flash memory is provided through an operating system routine, a call processing program routine, and / or the wireless terminal 799. Various application program routines and information or data for the same are stored, and the EEPROM is extracted and / or generated during the execution of the application provided in the terminal registration-related parameters and phone number (eg, address book) or the wireless terminal 799. Preferably at least one or more information (or data) is stored.

According to the exemplary embodiment of the present invention, the memory unit 795 stores at least one unique information of the wireless terminal 799 for the one-time authentication key based wireless security authentication processing function. The wireless terminal 799 The unique information may include at least one of a radio terminal 799 telephone number assigned to the radio terminal 799, an electronic serial number (ESN), a dynamic (or fixed) IP address, and the like.

Referring to FIG. 7, the wireless terminal 799 includes a terminal side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen on the screen of the wireless terminal 799. And a terminal-side screen processing unit 705 corresponding to various programs to be output. The terminal-side screen processing unit 705 is connected to the screen output unit 755 on the screen of the wireless terminal 799. A content use program for outputting a content use screen on the screen of the wireless terminal 799 in association with a background image processing unit 785 (not shown) corresponding to a background program for outputting a background image, and the screen output unit 755. Corresponding to a browser program for outputting a web access screen to the screen of the wireless terminal 799 in association with the content screen processing unit 785 (not shown) corresponding to the screen output unit 755. A financial transaction screen corresponding to a financial transaction program (or a browser program) outputting a financial transaction screen on the screen of the wireless terminal 799 in conjunction with a browser processing unit 785 (not shown) and the screen output unit 755. A payment screen processing unit 785 corresponding to a processing unit 785 (not shown) and a payment program (or a browser program) outputting a payment screen on the screen of the wireless terminal 799 in association with the screen output unit 755 ( It is preferable to include at least one or more).

Those skilled in the art will be familiar with the various features corresponding to the terminal-side screen processing unit 705 and the technical features of the functional components corresponding to the programs. Detailed description thereof will be omitted for convenience.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the wireless terminal 799, the one-time authentication processing unit 710 corresponding to the one-time authentication program provided through the program providing system shown in FIG. And a one-time authentication processing unit 710 includes a security authentication verification unit 725 for confirming whether the one-time authentication key-based wireless security authentication using the wireless terminal 799 is processed, and the security. Upon confirming the authentication, a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the screen of the wireless terminal 799, and the advertisement data is recorded in the remaining areas except the one-time authentication area. And an output processor 730 for processing the outputted advertisement output region to be output.

According to one embodiment of the invention, the one-time authentication processing unit 710 is preferably driven (or activated) in conjunction with the key input unit 763.

For example, when the wireless terminal 799 is provided with a key button for driving (or activating) the one-time authentication unit 710, the one-time authentication unit 710 is driven (or activated) by the key button input. It is preferable.

Alternatively, the one-time authentication processor 710 is driven on a terminal side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen output on the screen of the wireless terminal 799. When the menu (or activation) is provided, it is preferable that the one-time authentication processing unit 710 is driven (or activated) by menu selection through the key input unit 763.

According to another exemplary embodiment of the present invention, the terminal screen displayed on the screen of the wireless terminal 799 may include a content use screen, a web access screen, a financial transaction in the form of a wireless web document including at least one tag string (or a script). At least one screen, a payment screen, and the like, and when the tag string (or script) includes a tag string (or script) for driving (or activating) the one-time authentication processing unit 710, the disposable The authentication processor 710 may be driven (or activated) by the tag string (or script).

For example, when the terminal-side screen output on the screen of the wireless terminal 799 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication processing unit 710 may include the tag string ( Or a script).

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 799 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication processor 710 may use the tag string ( Or via a user interface and a key input unit 763 corresponding to a script).

According to another exemplary embodiment of the present invention, program driving information corresponding to the one-time authentication program is received through a wireless communication network, or a desktop, content use screen, web access screen, and financial transaction are displayed on the screen of the wireless terminal 799. When the program operation information corresponding to the one-time authentication program is included in the terminal-side screen processing unit 705 corresponding to various programs for outputting a terminal-side screen including at least one screen, a payment screen, and the like, the one-time authentication processor ( 710 is preferably driven (or activated) by the program driving information.

According to one embodiment of the invention, when the one-time authentication processing unit 710 is driven (or activated), the security authentication confirmation unit 725 is the one-time authentication processing unit 710 in response to the driving (or activation) The wireless terminal 799 is characterized in that the one-time authentication key-based wireless security authentication confirms that the processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication processing unit 710 is driven (or activated), the desktop, content using screen, web access screen, financial transaction screen, payment is displayed on the screen of the wireless terminal 799. Wireless security for using the content corresponding to the terminal screen, web access, financial transactions, or payment processing by the terminal screen processing unit 705 corresponding to various programs for outputting a terminal screen including at least one screen or the like. When requesting authentication, the security authentication check unit 725 is characterized in that the wireless terminal 799 confirms that the one-time authentication key-based wireless security authentication processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication processing unit 710 is driven (or activated), the content input corresponding to the terminal-side screen through the key input unit 763, web access, financial transaction , Or when an authentication command (or key data) for wireless security authentication for payment processing is input, the security authentication verification unit 725 requests the one-time authentication key-based wireless security authentication processing from the wireless terminal 799. Characterized in that it is confirmed.

Based on the one-time authentication key using the wireless terminal 799 through the security authentication check unit 725, the output processing unit 730 is based on the one-time authentication key in a certain area of the screen of the wireless terminal 799 And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing, and outputting an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to an exemplary embodiment of the present invention, the output processor 730 stores the terminal side screen area output on the entire area of the screen of the wireless terminal 799, and then stores a predetermined area of the screen of the wireless terminal 799. It is preferable to process a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the output processor 730 sets the one-time authentication area (or advertisement output area) on the terminal side screen area that is output on the entire area of the screen of the wireless terminal 799. A layer is set, a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the set layer, and the advertisement data in the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area for outputting the.

For example, the output processor 730 may be configured to output the one-time authentication area (or advertisement output area) to the hierarchy in an overlap method (or pop-up method).

According to another exemplary embodiment of the present invention, the one-time authentication area for outputting the one-time authentication key-based wireless security authentication process may be divided into a one-time authentication area and the advertisement output area and processed to be output on the screen of the wireless terminal 799. The output processing unit 730 may not be provided in the one-time authentication processing unit 710, but may be provided in a program manager (not shown) associated with the one-time authentication program in the wireless terminal 799, thereby limiting the present invention. It is clear that it is not.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the one-time authentication processing unit 710 provided in the wireless terminal 799 may include the memory unit 795 (or a chip memory provided in the IC chip). A confirmation unit 745 for confirming at least one or more one-time authentication key generation information necessary for generating the one-time authentication key, and the one-time authentication key based wireless using an authentication key generation algorithm based on the one-time authentication key generation information. And a generation unit 740 for generating a one-time authentication key for security authentication processing. When the authentication key generation method includes a challenge-response method, the challenge is linked with a wireless processing unit 797. It characterized in that it comprises a communication processing unit 750 for receiving the one-time authentication key generation information corresponding to the.

The terminal-side screen area and the one-time authentication area are divided and output to a predetermined area on the screen of the wireless terminal 799 by the output processor 730, and the one-time authentication key based wireless security authentication using the wireless terminal 799. When the one-time authentication key generation for processing is requested, the verification unit 745 generates at least one or more one-time authentication key required for generating the one-time authentication key from the memory unit 795 (or a chip memory unit provided in the IC chip). It is characterized by checking the information.

When the authentication key generation method includes a challenge-response method according to an embodiment of the present invention, the communication processing unit 750 generates a one-time authentication key corresponding to the challenge with the authentication server in association with the wireless processing unit 797. The method may further include requesting information and receiving at least one or more one-time authentication key generation information necessary for generating the one-time authentication key from the authentication server.

When generating a one-time authentication key of the time synchronization method according to an embodiment of the present invention, the confirmation unit 745 generates the one-time authentication key from the memory unit 795 (or a chip memory unit provided in the IC chip) It is preferable to confirm at least one or more one-time authentication key generation information required for the, and to check the time information for generating the one-time authentication key from the timer provided in the wireless terminal (799).

When generating a challenge-response disposable authentication key according to another embodiment of the present invention, the confirmation unit 745 is the one-time authentication from the memory unit 795 (or a chip memory unit provided in the IC chip). It is preferable to check at least one piece of one-time authentication key generation information required for key generation and to receive at least one piece of one-time authentication key generation information required for generation of the one-time authentication key from an authentication server in association with the communication processing unit 750.

When at least one or more one-time authentication key generation information necessary for generating the one-time authentication key is confirmed as described above, the generation unit 740 uses the authentication key generation algorithm based on the at least one or more one-time authentication key generation information. Characterized by generating a one-time authentication key for the one-time authentication key-based wireless security authentication process, wherein the one-time authentication key preferably comprises a data block of a predetermined length.

Those skilled in the art to which the present invention pertains, one-time corresponding to the time synchronization method (or challenge-response method) using an authentication key generation algorithm based on the at least one or more disposable authentication key generation information identified. Since you will be familiar with the technical features for generating the authentication key, a detailed description thereof will be omitted for convenience.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the one-time authentication processing unit 710 provided in the wireless terminal 799 may output a predetermined area on the one-time authentication area when the one-time authentication area is output. Outputting a one-time authentication start screen (or interface), and when one-time authentication is started through the one-time authentication start screen (or interface), outputting a password input screen (or interface) to a predetermined area on the one-time authentication area, and When the password input through the password input screen (or interface) is authenticated, the one-time authentication key generation screen (or interface) is output to a certain area on the one-time authentication area, and the one-time authentication key generation screen (or interface) Authorization key generation is requested, the requested one-time authentication key through the generation unit 740 When is generated, output the one-time authentication key to a certain area on the one-time authentication area, and outputs a one-time authentication key input screen (or interface) to the customer to enter the one-time authentication key to a certain area on the one-time authentication area, When the one-time authentication key-based wireless security authentication is processed, characterized in that the authentication key processing unit 735 for outputting the one-time authentication key end screen (or interface) on a predetermined area on the one-time authentication area.

When the advertisement output area and the one-time authentication area are divided and output on the screen of the wireless terminal 799 through the output processor 730, the one-time authentication start screen (or interface) is output to a predetermined area on the one-time authentication area. When the one-time authentication is started through the one-time authentication start screen (or interface), a password input screen (or interface) is output to a predetermined area on the one-time authentication area, and the password is input through the password input screen (or interface). After authentication, the authentication key processing unit 735 outputs a one-time authentication key generation screen (or interface) to a predetermined area on the one-time authentication area, and the one-time authentication key through the one-time authentication key generation screen (or interface) Characterized in that the generation is requested, and the one-time authentication key generation request When by one-time authentication key is generated for the one-time authentication key based wireless security authentication process, it characterized in that it outputs the one-time key in the predetermined area on the disposable authentication area.

In addition, the authentication key processing unit 735 outputs a one-time authentication key input screen (or interface) for the customer to input a one-time authentication key to a predetermined area on the one-time authentication area, and the one-time authentication key input screen (or interface) When the one-time authentication key is input through, the security authentication request information including the one-time authentication key is processed in connection with the communication processing unit 750 to be transmitted to the authentication server on the communication network so that the one-time authentication key-based wireless security authentication is processed. Characterized in that.

If the one-time authentication key-based wireless security authentication is processed, the authentication key processing unit 735 outputs a one-time authentication key end screen (or interface) to a predetermined area on the one-time authentication area, the one-time authentication key When the one-time authentication key-based wireless security authentication is terminated through an end screen (or an interface), the output processor 730 deletes the one-time authentication area on the screen of the wireless terminal 799 and replaces the advertisement output area with the wireless. The terminal 799 may return to the entire area of the screen.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the one-time authentication processing unit 710 provided in the wireless terminal 799 is screened by the output processing unit 730 on the screen of the wireless terminal 799. Before (or after) the advertisement output region is output to a predetermined region on the image, an advertisement receiving unit 715 for receiving advertisement data to be output to the advertisement output region through a wireless communication network, and the received advertisement data to the advertisement output region. It characterized in that it comprises an advertisement output unit 720 for processing to be output to.

According to an embodiment of the present invention, the authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the advertisement data to the wireless terminal 799. When the advertisement server transmitting the is linked (or implemented as one server) on the communication network, the advertisement receiving unit 715 corresponds to the interaction of the advertisement server and the authentication server (or wireless server) through the wireless communication network ( For example, an advertisement server corresponds to a keyword (or context or index word) included in a terminal screen displayed on the screen of the wireless terminal 799 before the one-time authentication area is established in association with an authentication server (or wireless server). It is desirable to receive the advertising data.

According to another embodiment of the present invention, an authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the advertisement to the wireless terminal 799. If the advertisement server transmitting the data is not associated with the communication network (for example, implemented by a separate operator who does not share information), the advertisement receiving unit 715 may set the one-time authentication area through the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the previous screen of the wireless terminal 799 is transmitted to the advertisement server, and the keyword corresponds to the keyword (or context or index word). It is desirable to receive the advertising data.

According to another embodiment of the present invention, the authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal (799) If the advertisement server for transmitting the advertisement data is not linked on the communication network (for example, implemented by a separate operator not sharing information), the advertisement receiving unit 715 may be configured to perform the wireless communication with the advertisement server through the wireless communication network. It is preferable to receive advertisement data preset to be provided to the terminal 799.

According to another exemplary embodiment of the present invention, when at least one or more pieces of advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit 795, the advertisement receiving unit 715 stores the advertisement data. It is possible to receive advertisement identification information associated with the advertisement data in place of the advertisement data from an advertisement server, whereby the present invention is not limited.

When at least one advertisement data is received from the advertisement server through the advertisement receiving unit 715 (or advertisement data corresponding to the advertisement identification information received through the advertisement receiving unit 715 is confirmed), the advertisement output unit 720 is provided. ) Processes the received (or confirmed) advertisement data to be output to the advertisement output region.

According to an embodiment of the present invention, when the advertisement data does not satisfy the condition to be output in the advertisement output region (for example, the screen size of the advertisement data is out of the advertisement output region, or in the wireless terminal 799). When the sound source is not supported), the advertisement output unit 720 may further include a function of converting the advertisement data to meet the condition to be output in the advertisement output area.

8 is a diagram illustrating a configuration of a one-time authentication key based wireless security authentication processing system according to an embodiment of the present invention.

In more detail, FIG. 8 is a one-time authentication key-based wireless security authentication through a wireless terminal 140 having a functional configuration corresponding to the one-time authentication program shown in FIG. 7 through the program providing system shown in FIG. As a system configuration for processing, in detail, the wireless terminal 140 shown in FIG. 7 generates a one-time authentication key for wireless security authentication processing through a one-time authentication area, and transmits it to the authentication server 105 through a wireless communication network. In this case, the authentication server 105 generates a one-time authentication key authentication code matching the one-time authentication key and compares it with the one-time authentication key to process wireless security authentication using the one-time authentication key, and the authentication key based wireless. In the security authentication process, by transmitting at least one or more advertising data from the ad server 135 to the wireless terminal 140, the wireless End 140, a diagram illustrating a system configuration for processing such that the advertisement data is output to the output in the remaining region except for a one-time authentication area displayed on the screen advertisement output area.

Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 8 to infer various implementation methods for the one-time authentication key based wireless security authentication processing system configuration, but the present invention. Is made including all the inferred implementation method, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 8, the one-time authentication key based wireless security authentication processing system includes at least one wireless terminal 140 having a functional configuration corresponding to the one-time authentication program shown in FIG. 7, and the wireless terminal 140. And at least one base station connecting the wireless section, and a control station controlling the base station and at least one server (or device) controlling and operating a wireless communication network including the base station and the control station. Characterized in that it comprises a 130, in connection with the network management system 130 receives the one-time authentication key information generated and transmitted in the wireless terminal 140, one-time authentication matching the one-time authentication key By generating a key authentication code and comparing with the one-time authentication key, wireless security authentication using the one-time authentication key is processed. By having the authentication server 105 is characterized in that formed.

In addition, the one-time authentication key-based wireless security authentication processing system, in conjunction with the authentication server 105 processes at least one or more financial transactions (or payment) in accordance with the one-time authentication key-based wireless security authentication, or the one-time use Characterized in that it comprises at least one or more wireless server 125 for performing various member authentication / service authentication / terminal authentication according to the wireless security authentication, wherein the wireless server 125 is the one-time authentication key The financial server 110 having at least one financial transaction function based on the wireless security authentication, the payment server 115 having at least one payment function based on the one-time authentication based on the wireless security authentication, and the disposable service. Wireless web server 120 with various member authentication / service authentication / terminal authentication functions based on authentication key-based wireless security authentication An preferably comprises at least one.

In addition, the one-time authentication key-based wireless security authentication processing system, the one-time authentication screen for the one-time authentication key-based wireless security authentication processing is output to a certain area of the screen of the wireless terminal 140 in the wireless terminal 140 used by the customer Outputting the one-time authentication area and outputting the advertisement output area to the remaining areas other than the one-time authentication area, transmitting the advertisement data to the wireless terminal 140 through a wireless communication network to be output to the advertisement output area, and processing the advertisement. Confirm an advertisement revenue amount corresponding to the output of the data in the advertisement output area, calculate a one-time authentication fee replacement amount of the advertisement revenue amount, and replace the one-time authentication fee amount through the calculated one-time authentication fee replacement amount (Or a discount) comprising an ad server 135 All.

In FIG. 8 according to an embodiment of the present invention, in order to effectively explain the technical features for the one-time authentication key-based wireless security authentication process to those skilled in the art, the one-time authentication key for convenience. Based on the authentication server 105 for processing wireless security authentication, the wireless server 125 for providing a variety of additional services based on the one-time authentication key-based wireless security authentication and the wireless terminal 140 to provide at least one or more advertising data Although the ad server 135 is illustrated as a separate server, the present invention is not limited thereto, and the one-time authentication key based wireless security authentication function provided in the authentication server 105 according to the intention of a person skilled in the art (for example, An information receiving unit 805, an information checking unit 810, an extracting unit 815, and an authenticating unit 825 are provided in the wireless server 125, or The increase server 105 and the wireless server 125 may be implemented as one server, and the amount of advertisement provision and one-time authentication fee provided in the advertisement server 135 may be calculated to replace the one-time authentication fee amount. Is provided in the wireless server 125 (or authentication server 105), or the advertisement server 135 and the wireless server 125 (or authentication server 105) is implemented as a single server It is clear that it is possible.

The wireless terminal 140 is a mobile communication terminal connected to a Code Division Multiple Access (CDMA) / Wide-CDMA (WCDMA) based mobile communication network, a wireless communication terminal connected to an HSDPA based wireless communication network, or an IEEE 802.16x based communication. At least one wireless terminal 140 including at least one or more portable Internet terminals connected to the high-speed wireless Internet, characterized in that the wireless terminal 140 is a wireless terminal 140 shown in FIG. It is characterized by comprising a functional configuration.

Those skilled in the art to which the present invention pertains can easily infer the technical characteristics of the wireless terminal 140 including the functional configuration of the wireless terminal 140 shown in FIG. Detailed description is omitted for convenience.

According to an embodiment of the present invention, the wireless communication network to which the wireless terminal 140 connects may include at least one of the CDMA based mobile communication network, the HSDPA based wireless communication network, or the IEEE 802.16x based high speed wireless Internet. Do.

The wireless communication network to which the wireless terminal 140 connects includes at least one or more base stations, a control station for controlling the base station, and at least one server (or apparatus) for controlling and operating a wireless communication network including the base station and the control station. Characterized in that it comprises a network operation system (130) including.

The base station is located at an end of the wireless communication network connecting a wireless section with at least one wireless terminal 140 located in a cell (eg, frequency reach) according to a wireless communication protocol defined in the wireless communication network. As a component, it is characterized in that the network operation system 130 to control and operate the radio terminal 140 through the control station.

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the base station connects a wireless section with at least one wireless terminal 140 based on the CDMA / WCDMA / GSM wireless protocol stack. It is desirable to.

According to another exemplary embodiment of the present invention, when the wireless communication network is an HSDPA based wireless communication network, the base station preferably connects a wireless section with at least one wireless terminal 140 based on the HSDPA wireless protocol stack.

According to another embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the base station includes at least one based on a wireless physical (PHY) layer and a media access control (MAC) layer of the IEEE 802.16x protocol. It is preferable to connect the wireless terminal 140 and the wireless section.

The control station controls at least one or more base stations, and is a component on a wireless communication network connecting the base station and the network operation system 130 by wired section. When the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, Preferably, the control station includes a base station controller (BSC). When the wireless communication network is an IEEE 802.16x based wireless communication network, the control station includes a packet access router (PAR). desirable.

The network operation system 130 controls at least one or more radio terminals 140 connectable to the radio communication network through at least one or more base stations in association with the control station, and at least one other radio with the radio terminal 140. It is characterized by connecting a communication channel (or call channel) with a server on the terminal 140 or a communication network, and calculating various communication charges and additional service use charges corresponding to the communication plan entered by the wireless terminal 140. .

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the network operation system 130 may include a mobile switching center (MSC) and a HLR (Mobile Switching Center) for processing circuit switching. Interworking function that provides circuit data service and / or packet data service for wireless data communication and connection with other networks in the network infrastructure for voice call and home location register (VLR). IWF), various message centers (e.g., short message center (SMC), multimedia message center (MMC), etc.) and various additional service server farms, and SGSN for processing packet exchange. (Serving GPRS Support Node), GGSN (Gateway GPRS Support Node) and RNC (Radio Network Controller) are preferably included.

According to another exemplary embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the network operation system 130 may include a home agent (HA) for mobility of IP to the wireless terminal 140, and Authentication, Authorization and Accounting (AAA) server for user authentication, Network Management Server (Network Management System), FA (Foreign Agent) interworking with the wireless network and at least one external wireless network, and the wireless terminal ( It is preferable to include a Dynamic Host Configuration Protocol (DHCP) server and DNS for allocating and registering Mobile IP (MIP).

Referring to FIG. 8, the authentication server 105 may include an interface unit 800 connecting at least one wireless terminal 140 and a one-time authentication key-based secure communication channel for a one-time authentication-based wireless security authentication process. An information receiving unit 805 for receiving security authentication request information including a one-time authentication key for the one-time authentication key-based wireless security authentication processing from the wireless terminal 140 through the wireless communication network in association with the interface unit 800; And an information confirming unit 810 for confirming information of the wireless terminal 140 transmitting the one-time authentication key through the wireless communication network (or a wireless communication protocol), and the wireless terminal from the one-time authentication management D / B 830. Extraction unit 815 for extracting the one-time authentication program information associated with the information and the one provided to the wireless terminal 140 based on the extracted one-time authentication program information The one-time authentication program generates the one-time authentication key authentication code with the same authentication key generation conditions (eg, the same one-time authentication key generation information and authentication key generation algorithm) that generated the one-time authentication key, and received from the wireless terminal 140 The authentication unit 825 for comparing the one-time authentication key included in the security authentication request information with the generated one-time authentication key authentication code to authenticate the validity of the received one-time authentication key and the interface unit 800 And a transmission unit 820 for transmitting the security authentication result information including the validity authentication result for the one-time authentication key to the wireless terminal 140 through the wireless communication network. When the authentication server 105 is provided outside the wireless server 125 as described above, the transmission unit 820 is the one-time authentication The validity authentication result of the key may be shared and transmitted to at least one or more wireless servers 125 requiring the one-time authentication key-based wireless security authentication process.

The interface unit 800 may connect at least one wireless terminal 140 and a communication channel for the one-time authentication key based wireless security authentication process through a wireless communication network, wherein the communication channel is the security authentication request information. It is desirable to include an encryption / decryption-based secure communication channel for.

The information receiving unit 805 receives the security authentication request information transmitted from the wireless terminal 140 through the interface unit 800, and the information checking unit 810 receives the security authentication request information. In the receiving process, characterized in that to confirm the information of the wireless terminal 140 that transmitted the one-time authentication key through the wireless communication network (or wireless communication protocol).

According to one embodiment of the invention, the security authentication request information is the information receiving unit through a separate one-time authentication key exchange protocol defined between the one-time authentication program provided in the wireless terminal 140 and the interface unit 800 ( 805 is preferably received.

According to another exemplary embodiment of the present invention, the security authentication request information is transmitted to the information receiving unit 805 through an encryption / decryption protocol based on a data communication protocol defined in a wireless communication network to which the wireless terminal 140 is connected. Is preferably received.

The extractor 815 extracts one-time authentication program information associated with the wireless terminal 140 information from the one-time authentication management D / B 830 based on the identified wireless terminal 140 information and the authentication unit. 825, characterized in that provided.

The authentication unit 825 generates the same one-time authentication key generation information and the authentication key generation algorithm used to generate the one-time authentication key in the one-time authentication program provided in the wireless terminal 140 based on the extracted one-time authentication program information. By generating a one-time authentication key authentication code, and comparing the one-time authentication key included in the security authentication request information received from the wireless terminal 140 and the generated one-time authentication key authentication code, for the received one-time authentication key Characterizing authenticity.

Here, the validity of the one-time authentication key is authenticated by the authentication unit 825 is confidentiality, authentication, integrity, and non-repudiation of the one-time authentication key-based wireless security authentication processing. (Nonrepudiation) is included.

When the validity of the one-time authentication key is authenticated through the authentication unit 825, the transmission unit 820 receives a validity authentication result for the one-time authentication key through the wireless communication network in association with the interface unit 800. Characterized by generating a security authentication result information, characterized in that for transmitting to the wireless terminal (140).

When the authentication server 105 is provided outside the wireless server 125 as shown in FIG. 8, the transmission unit 820 displays a validity authentication result for the one-time authentication key. It is characterized in that the transmission to the at least one or more wireless server 125 that needs to be based on the wireless security authentication processing, and correspondingly, the wireless server 125 at least based on the validity authentication result for the one-time authentication key It is characterized by processing one or more financial transactions (or payments), or processing various member authentication / service authentication / terminal authentication.

According to another embodiment of the present invention, when the wireless security authentication function of the authentication server 105 is provided in the wireless server 125, the transmission unit 820 may change the validity authentication result for the one-time authentication key. The function of sharing and transmitting to the wireless server 125 may be omitted, whereby the present invention is not limited.

According to the present invention, the advertisement server 135 includes at least one advertiser information requested to provide at least one advertisement data to the wireless terminal 140, advertisement data including advertisement information and radio link information registered by the advertiser. And advertisement information D / C for storing advertisement information for each CPM / CPC / CPA-based advertisement provided through the advertisement data, and storing and storing the advertisement information D / D deposit information (or the balance remaining information) for executing the advertisement amount. It is preferred that the B 865 is provided or interlocked through a communication network.

Here, the advertiser information is information for identifying an advertiser registering to provide at least one or more of a banner advertisement, a keyword advertisement, or a context advertisement to the wireless terminal 140 shown in FIG. 7, wherein the advertiser name, address, It is preferable to include at least one or more contacts.

The advertisement data may include advertisement information corresponding to an advertisement to be provided to the wireless terminal 140 shown in FIG. 7, and radio link information for processing CPC / CPA based advertisement provision in the wireless terminal 140. Preferably, the advertisement information includes at least one of text-based advertisement information, image-based advertisement information, or multimedia-based advertisement information according to the advertisement type.

In addition, the advertisement amount information, the CPM-based advertisement amount in accordance with the advertisement data provided to the wireless terminal 140 shown in FIG. 7, or after providing the advertisement data to the wireless terminal 140, the advertisement data selection ( Or CPC-based advertising amount according to the CPC-based advertising amount, or CPA-based advertising amount according to the purchase of the product (or service use) through the advertisement after the advertisement data is provided to the wireless terminal 140 and the advertisement data is selected (or clicked). It is preferable to include at least one or more.

In addition, the deposit information includes at least one amount remaining after executing the advertising amount of the amount deposited by the advertiser to execute the advertisement amount for the provision of the CPM / CPC / CPA-based advertising, or the deposit amount; It is preferable to make.

Referring to FIG. 8, the advertisement server 135 outputs a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a certain area of the screen of the wireless terminal 140 used by the customer. The advertisement providing confirmation unit 860 (or advertisement providing checking means) for checking whether an advertisement output area is output to the remaining areas other than the one-time authentication area, and in connection with the advertisement information D / B 865 when confirming the advertisement providing. An advertisement extracting unit 855 (or advertisement extracting means) for transmitting at least one advertisement data to be transmitted to the wireless terminal 140 and output to the advertisement output region, and the extracted advertisement data through the wireless communication network. An advertisement providing unit 840 (or advertisement providing means) for transmitting to the wireless terminal 140 to be output to the advertisement output region, and the advertisement data to the advertisement output area. An amount of money calculating unit 835 (or an amount of money calculating means) for confirming the amount of advertisement revenue corresponding to the output at the station, and calculating a replacement amount of one-time authentication fee among the amount of advertising revenue; It is characterized by comprising a fee processing unit 845 (or fee calculation means) for replacing (or discounting) the one-time authentication fee amount through.

In addition, the advertisement server 135 includes an information checking unit 850 (or information checking means) for checking keyword (or context or index word) information included in the terminal-side screen outputted to the wireless terminal 140. Preferably, the advertisement extracting unit 855 extracts the advertisement data corresponding to the identified keyword (or context or index word) in association with the advertisement information D / B 865. desirable.

According to an exemplary embodiment of the present invention, the advertisement providing confirmation unit 860 is disposable in a certain area of the screen of the wireless terminal 140 used by the customer in connection with the authentication server 105 (or the wireless server 125). And outputting a one-time authentication area for outputting a one-time authentication screen for the authentication key-based wireless security authentication process and checking whether an advertisement output area is output to the remaining areas except for the one-time authentication area.

For example, the advertisement providing confirmation unit 860 transmits a wireless web document including a tag string (or a script) that drives (or activates) a one-time authentication processing function from the wireless server 125 to the wireless terminal 140. In one case, a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and the advertisement is displayed in the remaining areas except the one-time authentication area. It is preferable to confirm that the output area is output.

Alternatively, the advertisement providing confirmation unit 860 transmits program driving information for driving (or activating) a one-time authentication processing function from the wireless server 125 (or the authentication server 105) to the wireless terminal 140. In this case, a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and the advertisement is output to the remaining areas except the one-time authentication area. It is preferable to confirm that the area is output.

According to another exemplary embodiment of the present invention, the advertisement providing confirmation unit 860 is a one-time authentication key-based wireless security authentication processing in a predetermined area of the screen of the wireless terminal 140 used by the customer in connection with the wireless terminal 140. It is characterized in that for outputting the one-time authentication area for outputting the one-time authentication screen for, and confirms that the advertisement output area is output to the remaining area except the one-time authentication area.

For example, the advertisement providing confirmation unit 860 confirms that the one-time authentication processing function is driven (or activated) from the wireless terminal 140 or that the advertisement output region of the screen of the wireless terminal 140 is output. When the request information is received, a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, except for the one-time authentication area. It is preferable to confirm that the advertisement output area is output in the remaining area.

Alternatively, the advertisement providing confirmation unit 860 may include advertisement request information including a keyword (or a context or an index word) included in a terminal screen previously output from the wireless terminal 140 on the screen of the wireless terminal 140. When receiving, outputs a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication processing to a predetermined area of the wireless terminal 140 screen used by the customer, and the remaining area except the one-time authentication area It is preferable to confirm that the advertisement output area is output in the.

If it is confirmed that the advertisement output region is output on the screen of the wireless terminal 140, the information checking unit 850 is previously output to the wireless terminal 140. Characteristic (or context or index word) information included in the side screen is confirmed.

According to an exemplary embodiment of the present invention, the information checking unit 810 checks the wireless web document transmitted from the wireless server 125 to the wireless terminal 140 in association with the wireless server 125. It is preferable to check keyword (or context or index word) information included in the terminal-side screen previously output to the wireless terminal 140.

According to another exemplary embodiment of the present invention, the information confirming unit 850 includes keyword (or context or index word) information included in the terminal-side screen previously output from the wireless terminal 140 to the wireless terminal 140. It is desirable to receive.

As a result of confirming by the advertisement providing confirmation unit 860, it is confirmed that the advertisement output region is output on the screen of the wireless terminal 140, or previously outputted to the wireless terminal 140 by the information checking unit 850. When keyword (or context or index word) information included in the terminal-side screen is confirmed, the advertisement extracting unit 855 transmits the advertisement to the wireless terminal 140 in association with the advertisement information D / B 865. At least one advertisement data to be output to the output area is characterized in that the extraction.

According to an exemplary embodiment of the present invention, the advertisement extracting unit 855 extracts at least one advertisement data preset to be transmitted to the wireless terminal 140 in association with the advertisement information D / B 865. Do.

According to another exemplary embodiment of the present invention, the advertisement extracting unit 855 is connected to the advertisement information D / B 865 and includes a keyword (or context, which is included in the terminal-side screen output to the wireless terminal 140). Or at least one advertisement data corresponding to an index word).

When at least one advertisement data to be transmitted to the wireless terminal 140 by the advertisement extracting unit 855 and output to the advertisement output region is extracted, the advertisement providing unit 840 may extract the extracted advertisement data through a wireless communication network. Through the transmission to the wireless terminal 140 is characterized in that the processing to be output to the advertisement output area.

According to an embodiment of the present invention, the advertisement providing unit 840 is a communication protocol negotiated with the wireless terminal 140 (for example, the advertisement data communication protocol provided in the one-time authentication program provided in the wireless terminal 140). It is preferable to transmit the extracted advertising data to the wireless terminal 140 through the).

According to another exemplary embodiment of the present invention, the advertisement providing unit 840 includes the extracted advertisement data in a wireless web document transmitted by the wireless server 125 to the wireless terminal 140. 140).

When at least one advertisement data is transmitted to the wireless terminal 140 through the advertisement providing unit 840 and output to the advertisement output area, the amount calculating unit 835 may provide the advertisement information D / B 865. And the advertisement amount information corresponding to the advertisement data enhanced by the wireless terminal 140, and the advertisement amount amount information corresponding to the advertisement data provision among the advertisement amounts.

In this case, the advertisement revenue amount information is preferably made of a variety of fees in the advertising amount including the revenue amount, may be used as the advertising revenue amount of the advertising amount according to the intention of those skilled in the art.

When the amount of advertising revenue according to the advertisement data is confirmed, the amount calculating unit 835 may calculate a portion of the amount of advertising revenue as the replacement amount of the one-time authentication fee.

According to the method of the present invention, the one-time authentication fee replacement amount is preferably made to include a certain amount of the advertising revenue amount, or comprises an amount corresponding to a certain ratio of the advertising revenue amount.

When the one-time authentication fee replacement amount is calculated by the amount calculating unit 835, the fee processing unit 845 confirms the deposit information deposited by the advertiser in connection with the advertisement information D / B 865, and The one-time authentication fee replacement amount of the deposit is characterized in that for replacing the one-time authentication fee amount for the one-time authentication key-based wireless security authentication processing (or a discount amount from the one-time authentication fee amount).

9 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

In more detail, FIG. 9 illustrates a process of generating a one-time authentication key in a time synchronization method for a one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. The wireless terminal 140 is provided on the wireless terminal 140 in a state in which a terminal screen including at least one of a desktop screen, a content using screen, a web access screen, a financial transaction screen, and a payment screen is output. When the one-time authentication key-based wireless security authentication function is driven through the key input means, the one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process on a certain area of the screen of the wireless terminal 140. And outputting an advertisement output region for outputting advertisement data in the remaining regions other than the one-time authentication region. The process of outputting at least one advertisement data to the advertisement output area, and generating a one-time authentication key to be output on the one-time authentication area through a time synchronization method, for convenience, the one-time authentication start screen (or interface) ) And the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 9, a terminal-side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. And a key input (or a one-time authentication key-based wireless security authentication related user interface included in the terminal side screen) through a key input unit provided in the wireless terminal 140 while outputting the terminal side screen. When the one-time authentication program is driven through the associated key input (905), the wireless terminal 140 checks whether or not the wireless security authentication process by generating the one-time authentication key through the one-time authentication program (910).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal-side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen. Preferably, the one-time authentication program confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (915), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and an advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (920).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area, and outputs the data (925). In operation 930, it is determined whether at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( 135, instead of the advertisement data, it is possible to receive the advertisement identification information associated with the advertisement data, whereby the present invention is not limited.

If it is confirmed that the reception of the advertisement data to be output from the advertisement server 135 to the advertisement output region (935), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After transmitting the advertisement request information corresponding to the advertisement data to be output to the region (940), it is determined whether at least one or more advertisement data to be output to the advertisement output region from the advertisement server 135 (930).

On the other hand, if it is confirmed in step 935 that the advertisement data to be received from the advertisement server 135 is output to the advertisement output region, the wireless terminal 140 outputs the received advertisement data to the advertisement output region (945). In step 950, the method determines whether a one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (955), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip) And confirming the one-time authentication key generation information of the time synchronization method through a timer (960), and assigning the at least one or more one-time authentication key generation information to an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (965).

10 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 10 illustrates a process of generating a one-time authentication key in a time synchronization manner for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. At least one or more of a content-use screen, a web access screen, a financial transaction screen, a payment screen, etc., in the form of a wireless web document including at least one tag string (or a script), which is output to the terminal 140 shown in FIG. Including, and when the one-time authentication key-based wireless security authentication processing function is driven through the tag string (or script), one-time use for one-time authentication key-based wireless security authentication processing in a certain area of the screen of the wireless terminal 140 Output the one-time authentication area that the authentication screen is output, the advertisement in the remaining areas except the one-time authentication area After processing to output the advertisement output area for outputting the data, the process for outputting at least one or more advertisement data to the advertisement output area, and generates a one-time authentication key to be output on the one-time authentication area through a time synchronization method For convenience, the process of outputting the one-time authentication start screen (or interface) and the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 10, a one-time wireless web document including a tag string (or a script) for driving a one-time authentication program is received by the wireless terminal 140 illustrated in FIG. 7, and the contents corresponding to the wireless web document are used. When the terminal-side screen including at least one screen, a web access screen, a financial transaction screen, a payment screen, and the like is output (1000), the disposable pattern may be generated by a program driving related tag string (or script) included in the wireless web document. The authentication program is driven (1005).

For example, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication program is the tag string (or script). It is preferred to be driven (or activated) by.

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication program is the tag string (or the script). It is preferable to be driven (or activated) through key input through a user interface corresponding to the key input means.

Thereafter, the wireless terminal 140 confirms whether or not the wireless security authentication processing by generating a one-time authentication key through the one-time authentication program (1010).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1015), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on one-time authentication key is output, and the advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (1020).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a certain area on the one-time authentication area (1025), and outputs the wireless communication network. In operation 1030, it is determined whether the at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( It is possible to receive the advertisement identification information associated with the advertisement data in place of the advertisement data from 135, whereby the present invention is not limited.

If it is confirmed that the reception of advertisement data to be output from the advertisement server 135 to the advertisement output region (1035), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After transmitting the advertisement request information corresponding to the advertisement data to be output to the region (1040), it is checked whether the at least one advertisement data to be output to the advertisement output region from the advertisement server 135 (1030).

On the other hand, if it is confirmed that the reception of advertisement data to be output to the advertisement output region from the advertisement server 135 (1035), the wireless terminal 140 outputs the received advertisement data to the advertisement output region (1045). In step 1050, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1055), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip) And confirming the one-time authentication key generation information of the time synchronization method through a timer (1060), and assigning the at least one or more one-time authentication key generation information to an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (1065).

11 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 11 illustrates a process of generating a one-time authentication key in a time synchronization manner for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. When the program driving information for the one-time authentication program is received through the wireless communication network to the illustrated wireless terminal 140, and the one-time authentication key-based wireless security authentication processing function is driven through the program driving information, the wireless terminal 140. 1) outputs a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key and outputs an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area. After that, at least one advertisement data is output to the advertisement output region. A process of generating a one-time authentication key to be output on the one-time authentication area through an inter-synchronization method will be described. For convenience, the process of outputting the one-time authentication start screen (or interface) and a password input screen (or interface) will be described. The output process will be omitted.

Referring to FIG. 11, the entire area of a terminal screen including at least one of a desktop screen, a content using screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the screen of the wireless terminal 140 shown in FIG. 7. If the program driving information for the one-time authentication program is received through the wireless communication network (1100), the wireless terminal 140 drives the one-time authentication program through the program driving information (1105).

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1110).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1115), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication is output, and an advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (1120).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or interface) for requesting (or commanding) to generate a one-time authentication key in a certain area on the one-time authentication area (1125), and outputs the wireless communication network. In operation 1130, it is determined whether the at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( 135, instead of the advertisement data, it is possible to receive the advertisement identification information associated with the advertisement data, whereby the present invention is not limited.

If it is confirmed that the reception of the advertisement data to be output from the advertisement server 135 to the advertisement output region (1135), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After transmitting the advertisement request information corresponding to the advertisement data to be output to the region (1140), it is determined whether at least one or more advertisement data to be output to the advertisement output region from the advertisement server 135 (1130).

On the other hand, if it is confirmed that the reception of advertisement data to be output from the advertisement server 135 to the advertisement output region (1135), the wireless terminal 140 outputs the received advertisement data to the advertisement output region (1145). In step 1150, the controller 110 checks whether a one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1155), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip). And confirming the one-time authentication key generation information of the time synchronization method through a timer (1160), and inserting the at least one or more one-time authentication key generation information into an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (1165).

12 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

More specifically, FIG. 12 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. In the state in which the terminal-side screen including at least one of a desktop, a content use screen, a web access screen, a financial transaction screen, a payment screen, etc. is output on the screen of the wireless terminal 140 shown in FIG. When the one-time authentication key-based wireless security authentication function is driven through the provided key input means, the one-time authentication that outputs a one-time authentication screen for the one-time authentication key-based wireless security authentication processing on a certain area of the screen of the wireless terminal 140. Outputting an area, and outputting an advertisement output area for outputting advertisement data to other areas except the one-time authentication area. After that, a process of outputting at least one advertisement data to the advertisement output region and generating a one-time authentication key to be output on the one-time authentication region through a challenge-response method will be described. The process of outputting the (or interface) and the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 12, a terminal-side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. And outputting (1200), while outputting the terminal-side screen, the key input (or the one-time authentication key-based wireless security authentication related user interface included in the terminal-side screen through the key input means provided in the wireless terminal 140 and When the one-time authentication program is driven through the associated key input (1205), the wireless terminal 140 checks whether the wireless security authentication process is performed by generating the one-time authentication key through the one-time authentication program (1210).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking, the wireless terminal 140 outputs a predetermined area of the screen of the wireless terminal 140 that outputs the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key is output to the control unit, and an advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (1220).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1225), and outputs the wireless communication network. In operation 1230, it is determined whether at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( 135, instead of the advertisement data, it is possible to receive the advertisement identification information associated with the advertisement data, whereby the present invention is not limited.

If it is confirmed that the reception of advertisement data to be output from the advertisement server 135 to the advertisement output region (1235), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After the advertisement request information corresponding to the advertisement data to be output to the region is transmitted (1240), it is determined whether at least one advertisement data to be output to the advertisement output region is received from the advertisement server 135 (1230).

On the other hand, if it is confirmed that the reception of advertisement data to be output from the advertisement server 135 to the advertisement output region (1235), the wireless terminal 140 outputs the received advertisement data to the advertisement output region (1245). In operation 1250, the method determines whether a one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or an interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1255), the wireless terminal 140 to the challenge server 105 through the wireless communication network-the challenge- Requesting and receiving first one-time authentication key generation information corresponding to the response challenge (1260), and N-th corresponding to the challenge-response method through the memory unit (or the chip memory unit provided in the IC chip). = 2,3, ...) one-time authentication key generation information (1265), and substituted the at least one or more one-time authentication key generation information into the authentication key generation algorithm to obtain a one-time authentication key for the wireless security authentication processing; Create (1270).

13 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

In more detail, FIG. 13 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. At least one of a content-use screen, a web access screen, a financial transaction screen, a payment screen, etc., in the form of a wireless web document including the at least one tag string (or script), which is output to the terminal 140 shown in FIG. When the one-time authentication key-based wireless security authentication processing function is driven through the tag string (or script), the wireless security authentication for one-time authentication key-based wireless security processing is performed on a certain area of the screen. Output a one-time authentication area where a one-time authentication screen is output, and optically display in the remaining areas except for the one-time authentication area. Processing to output an advertisement output region for outputting data, and outputting at least one advertisement data to the advertisement output region, and generating a one-time authentication key to be output on the one-time authentication region through a challenge-response method. Although illustrated and described, for convenience, the process of outputting the one-time authentication start screen (or interface) and the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 13, a one-time wireless web document including a tag string (or a script) for driving a one-time authentication program is received by the wireless terminal 140 illustrated in FIG. 7, and the contents corresponding to the wireless web document are used. When a terminal side screen including at least one screen, a web access screen, a financial transaction screen, a payment screen, etc. is output (1300), the one-time authentication is performed by a program driving related tag string (or script) included in the wireless web document. The program is driven (1305).

For example, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication program is the tag string (or script). It is preferred to be driven (or activated) by.

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication program is the tag string (or the script). It is preferable to be driven (or activated) through a key input through a user interface corresponding to the key input means.

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1310).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input for the one-time authentication program, it is preferable that the one-time authentication key-based wireless security authentication is requested to be processed in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1315), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication is output, and an advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (1320).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1325), and outputs the wireless communication network. In operation 1330, it is determined whether at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( 135, instead of the advertisement data, it is possible to receive the advertisement identification information associated with the advertisement data, whereby the present invention is not limited.

If it is confirmed that the reception of advertisement data to be output from the advertisement server 135 to the advertisement output region (1335), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After the advertisement request information corresponding to the advertisement data to be output to the region is transmitted (1340), it is checked whether the at least one advertisement data to be output to the advertisement output region is received from the advertisement server 135 (1330).

On the other hand, if it is confirmed that the reception of the advertisement data to be output to the advertisement output region from the advertisement server 135 (1335), the wireless terminal 140 outputs the received advertisement data to the advertisement output area ( In operation 1350, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1355), the wireless terminal 140 to the challenge server 105 through the wireless communication network-the challenge- Request and receive first one-time authentication key generation information corresponding to the response challenge (1360), and the N-th corresponding to the challenge-response method through the memory unit (or the chip memory unit provided in the IC chip). = 2,3, ...) one-time authentication key generation information (1365), and substituted the at least one or more one-time authentication key generation information into the authentication key generation algorithm to obtain a one-time authentication key for the wireless security authentication processing; Create (1370).

14 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 14 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. When the program driving information for the one time authentication program is received through the wireless communication network through the wireless terminal 140 shown in FIG. 1 and the one time authentication key based wireless security authentication processing function is driven through the program driving information, the wireless terminal ( 140) outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a predetermined area of the screen, and outputting an advertisement output area for outputting advertisement data to other areas except the one-time authentication area; After processing, at least one advertisement data is output to the advertisement output region. The process of generating a one-time authentication key to be output on the one-time authentication area through a challenge-response method will be described. For convenience, the process of outputting the one-time authentication start screen (or interface) and a password input screen (or Interface) will be omitted.

Referring to FIG. 14, a terminal side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. During operation, the program driving information for the one-time authentication program and the first one-time authentication key generation information corresponding to the challenge-response challenge are received through a wireless communication network (1400), and the wireless terminal 140 receives the program. The one-time authentication program is driven through the driving information (1405).

According to another exemplary embodiment of the present invention, the first one-time authentication key generation information is received by requesting and receiving the authentication server 105 through the wireless communication network in the process of confirming the challenge-response one-time authentication key generation information. Also, the present invention is not limited thereto.

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1410).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input corresponding to the terminal-side screen is used, the web access, the financial transaction, or the payment processing through the key input means. When an authentication command (or key data) for wireless security authentication is input for the one-time authentication program, it is preferable that the one-time authentication key-based wireless security authentication is requested to be processed in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1415), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication is output, and an advertisement output area for outputting advertisement data is output to the remaining areas except the one-time authentication area (1420).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to output an advertisement output area for outputting advertisement data to the remaining areas except for the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program is a layer in which the one-time authentication area (or advertisement output area) is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. (Layer) is set, the one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the set layer, and outputs advertisement data to the remaining areas except the one-time authentication area. It is preferable to process so that the advertisement output area.

For example, the one-time authentication program may be set such that the one-time authentication area (or advertisement output area) is output to the hierarchy in an overlap method (or pop-up method).

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1425), and outputs the wireless communication network. In operation 1430, it is determined whether the at least one advertisement data to be output from the advertisement server 135 to the advertisement output region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 135 that transmits the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 connects to the advertisement server 135 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 135). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 135 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 is connected to the wireless communication network. The keyword (or context, or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 135 before the one-time authentication region is set through the advertisement server 135. 135, it is preferable to receive advertisement data corresponding to the keyword (or context, or index word).

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 135 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 Preferably, the advertisement server 135 receives advertisement data preset to be provided to the wireless terminal 140 through a wireless communication network.

According to another embodiment of the present invention, when at least one or more advertisement data to be output to the advertisement output region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 includes the advertisement server ( 135, instead of the advertisement data, it is possible to receive the advertisement identification information associated with the advertisement data, whereby the present invention is not limited.

If it is confirmed that the reception of the advertisement data to be output from the advertisement server 135 to the advertisement output region (1435), the wireless terminal 140 outputs the advertisement to the advertisement server 135 through a wireless communication network. After transmitting the advertisement request information corresponding to the advertisement data to be output to the region (1440), it is checked whether the at least one advertisement data to be output to the advertisement output region from the advertisement server 135 (1430).

On the other hand, if it is confirmed that the reception of the advertisement data to be output to the advertisement output region from the advertisement server 135 (1435), the wireless terminal 140 outputs the received advertisement data to the advertisement output region (1445). In step 1450, the method determines whether a one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area.

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1455), the wireless terminal 140 is the memory unit (or chip memory unit provided in the IC chip) N) (N = 2,3, ...) one-time authentication key generation information corresponding to the challenge-response method is performed (1460).

According to another exemplary embodiment of the present invention, the first one-time authentication key generation information corresponding to the challenge-response method is not received together with the program driving information, but is requested and received from the authentication server 105 through the wireless communication network. Also, the present invention is not limited thereto.

Thereafter, the wireless terminal 140 generates the one-time authentication key for the wireless security authentication process by substituting the identified at least one-time one-time authentication key generation information into an authentication key generation algorithm (1465).

15 is a diagram illustrating a process of inputting and transmitting a one-time authentication key according to an embodiment of the present invention.

More specifically, FIG. 15 is a one-time-use generated by the one-time authentication key generation process shown in FIG. 9 or 10 or 11 or 12 or 13 or 14 in the wireless terminal 140 shown in FIG. As the authentication key is input through the one-time authentication area output on the screen of the wireless terminal 140 and transmitted to the authentication server 105 shown in FIG. 8, general knowledge in the technical field to which the present invention belongs. If you have, it will be able to infer various implementation methods for the process of inputting and transmitting the one-time authentication key by referring to and / or modified in this figure 15, the present invention comprises all the implementation methods inferred However, the technical features are not limited only to the implementation method illustrated in FIG. 15.

Referring to FIG. 15, the wireless terminal 140 illustrated in FIG. 7 is configured to generate at least one single-use authentication key through the one-time authentication key generation process illustrated in FIG. 9, 10, 11, 12, 13, or 14. In operation 1500, a one-time authentication key for processing the wireless security authentication is generated through authentication key generation information and an authentication key generation algorithm.

If the one-time authentication key for the wireless security authentication process is generated (1505), the wireless terminal 140 outputs the generated one-time authentication key to a predetermined area on the one-time authentication area displayed on the screen of the wireless terminal 140. 1510 and outputs the one-time authentication key input screen (or interface) to a predetermined area on the one-time authentication area (1515).

Thereafter, the wireless terminal 140 checks whether the one-time authentication key is input through a one-time authentication key input screen (or an interface) output to the one-time authentication area through a key input (1520).

If the one-time authentication key is input through the one-time authentication key input screen (or interface) output to the one-time authentication area (1525), the wireless terminal 140 is input through the one-time authentication key input screen (or interface). Generates security authentication request information including the one-time authentication key (1530), and transmits the security authentication request information including the one-time authentication key to the authentication server 105 shown in FIG. 8 through the wireless communication network. (1535).

According to another embodiment of the present invention, when the security authentication request and the financial transaction (or payment) are made together, the one-time authentication key may be included in the financial transaction request information (or payment request information) and transmitted. This makes it clear that the present invention is not limited.

16 is a diagram illustrating a one-time authentication key based wireless security authentication process according to an embodiment of the present invention.

More specifically, FIG. 16 includes the one-time authentication key from the wireless terminal 140 shown in FIG. 7 to the authentication server 105 shown in FIG. 8 through the one-time authentication key transmission process shown in FIG. When the security authentication request information is transmitted, the authentication server 105 processes the wireless security authentication based on the one-time authentication key by checking the validity of the one-time authentication key. Those skilled in the art will be able to infer various implementation methods for the one-time authentication key-based wireless security authentication process by referring to and / or modifying the drawing 16, but the present invention includes all the implementation methods inferred above. The technical features are not limited only to the implementation method illustrated in FIG. 16.

Referring to FIG. 16, the wireless terminal 140 shown in FIG. 7 includes the one-time authentication key from the wireless terminal 140 to the authentication server 105 shown in FIG. 8 through the process of transmitting the one-time authentication key shown in FIG. When the security authentication request information is transmitted, the authentication server 105 receives the security authentication request information including the one-time authentication key through a wireless communication network (1600), and the wireless communication network (eg, a network operation system on a wireless communication network ( 130)) or read the protocol for receiving the security authentication request information to check the information of the wireless terminal 140 that transmitted the security authentication request information (1605).

If the information on the wireless terminal 140 that transmits the security authentication request information is confirmed (1610), the authentication server 105 is connected to the one-time authentication management D / B 830 shown in Figure 8 the wireless The one-time authentication key generation information and the authentication key generation algorithm corresponding to the one-time authentication key are checked from the one-time authentication key management information associated with the terminal 140 (1615).

If the one-time authentication key generation information and the authentication key generation algorithm corresponding to the one-time authentication key is confirmed (1620), the wireless terminal 140 uses the one-time authentication key generation information and the authentication key generation algorithm. Generate a one-time authentication key authentication code corresponding to the key (1625), and compares the one-time authentication key included in the security authentication request information and the generated one-time authentication key authentication code to check the validity of the one-time authentication key ( 1630).

If the validity of the one-time authentication key is confirmed (1635), the wireless terminal 140 generates security authentication result information including the one-time authentication key validation result through the wireless communication network to the wireless terminal 140. 1640, the one-time authentication key to the wireless server 125 (eg, the financial server 110, the payment server 115, the wireless web server 120, etc.) requesting the wireless security authentication based on the one-time authentication key. The validity result is shared and transmitted (1645), and correspondingly, the wireless server 125 transmits to the wireless terminal 140 at least one or more financial transactions, payment and authentication based on the one-time authentication key validity result. Provide additional services.

17 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

In more detail, FIG. 17 illustrates the one-time authentication in the authentication server 105 shown in FIG. 8 through the one-time authentication key based wireless security authentication process shown in FIG. 16 in the authentication server 105 shown in FIG. After generating security authentication result information including a key validation result and transmitting the result to the wireless terminal 140 shown in FIG. 7, the wireless terminal 140 processes the wireless security authentication using the security authentication result information. As for the person skilled in the art to which the present invention pertains, various implementation methods for the one-time authentication key based wireless security authentication process may be inferred by referring to and / or modifying the drawing 17. The present invention includes all the inferred implementation methods, and the technical features are not limited only to the implementation method illustrated in FIG. 17.

Referring to FIG. 17, the one-time authentication key in the authentication server 105 shown in FIG. 8 through the one-time authentication key based wireless security authentication process shown in FIG. 16 in the authentication server 105 shown in FIG. After generating security authentication result information including a validity result and transmitting it to the wireless terminal 140 shown in FIG. 7, the wireless terminal 140 validates the one-time authentication key from the authentication server 105 through a wireless communication network. Check whether the security authentication result information including the verification result (eg, validity approval or validity error) is received (1700).

If the security authentication result information is received (1705), the wireless terminal 140 extracts the one-time validation result from the security authentication result information and outputs it to a predetermined area on the one-time authentication area (1710), the one-time The one-time authentication key end screen (or interface) is output to a predetermined area on the authentication area (1715).

Thereafter, it is checked whether the wireless security authentication process using the one-time authentication key ends through the one-time authentication key end screen (or interface) output on the one-time authentication area (1720).

If the wireless security authentication process using the one-time authentication key is terminated through the one-time authentication key end screen (or interface) (1725), the wireless terminal 140 is connected to the one-time authentication area on the screen of the wireless terminal 140. The advertisement output area is deleted, and the terminal-side screen is processed to be output to the entire area of the screen of the wireless terminal 140 (1730).

18 is a diagram illustrating an advertisement providing process for replacing a one-time authentication fee (or a discount) according to an embodiment of the present invention.

In detail, FIG. 18 illustrates the wireless terminal through the one-time authentication key generation process illustrated in FIG. 9 or 10 or 11 or 12 or 13 or 14 in the wireless terminal 140 illustrated in FIG. 7. If an advertisement output region is output on the screen, the advertisement server 135 transmits at least one advertisement data to the wireless terminal 140 and processes the advertisement data to be output to the advertisement output region. Corresponding to a process of replacing (or discounting) a portion of the advertising revenue amount with the one-time authentication fee, and a person of ordinary skill in the art to which the present invention pertains may refer to FIG. 18 and / or It may be modified to infer various implementation methods for the advertisement providing process for the replacement (or discount) of the one-time authentication fee, but the present invention is inferred It is made including all implementation methods, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 18, the advertisement server 135 checks whether an advertisement output region is output on the screen of the wireless terminal 140 to provide at least one advertisement data to the wireless terminal 140 illustrated in FIG. 7. (1800).

According to an exemplary embodiment of the present invention, the advertisement server 135 is connected to the authentication server 105 (or the wireless server 125) in one-time authentication key in a certain area of the screen of the wireless terminal 140 used by the customer. It is characterized by outputting a one-time authentication area outputting a one-time authentication screen for the wireless security authentication process based on, and confirming whether the advertisement output area is output to the remaining area except the one-time authentication area.

For example, the advertisement server 135 transmits a wireless web document including a tag string (or a script) that drives (or activates) a one-time authentication processing function from the wireless server 125 to the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a certain area of the screen of the wireless terminal 140 used by the customer, and displaying an advertisement output area in the remaining areas except the one-time authentication area. It is preferable to confirm that this is output.

Alternatively, when the advertisement server 135 transmits program driving information for driving (or activating) a one-time authentication processing function from the wireless server 125 (or the authentication server 105) to the wireless terminal 140, A one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on the one-time authentication key is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and the advertisement output area is displayed in the remaining areas except the one-time authentication area. It is preferable to confirm that it is output.

According to another exemplary embodiment of the present invention, the advertisement server 135 is connected to the wireless terminal 140 for one-time authentication key-based wireless security authentication processing in a certain area of the wireless terminal 140 used by the customer. And outputting a one-time authentication area on which a one-time authentication screen is output and checking whether an advertisement output area is output to the remaining areas except the one-time authentication area.

For example, the advertisement server 135 confirms that the one-time authentication processing function is driven (or activated) from the wireless terminal 140 or that the advertisement output area of the screen of the wireless terminal 140 is output. When receiving, outputs a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication processing to a predetermined area of the wireless terminal 140 screen used by the customer, and the remaining area except the one-time authentication area It is preferable to confirm that the advertisement output area is output in the.

Alternatively, the advertisement server 135 receives advertisement request information including a keyword (or a context, or an index word) included in the terminal-side screen previously output on the screen of the wireless terminal 140 from the wireless terminal 140. In one case, a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and the advertisement is displayed in the remaining areas except the one-time authentication area. It is preferable to confirm that the output area is output.

If it is confirmed that the advertisement output region is output on the screen of the wireless terminal 140 (1805), the advertisement server 135 is connected to the advertisement information D / B 865, the wireless terminal ( In operation 1810, the at least one advertisement data to be transmitted is checked.

According to an exemplary embodiment of the present invention, the advertisement server 135 may check at least one advertisement data preset to be transmitted to the wireless terminal 140 in association with the advertisement information D / B 865. .

According to another exemplary embodiment of the present invention, the advertisement server 135 checks the wireless web document transmitted from the wireless server 125 to the wireless terminal 140 in association with the wireless server 125. Check the keyword (or context or index word) information included in the terminal-side screen output to the wireless terminal 140 and at least one advertisement corresponding to the identified keyword (or context or index word) information. It is desirable to verify the data.

According to another exemplary embodiment of the present invention, the advertisement server 135 uses keyword (or context or index word) information included in the terminal-side screen previously outputted from the wireless terminal 140 to the wireless terminal 140. It is desirable to receive and verify at least one or more advertisement data corresponding to the received keyword (or contextual or index word) information.

If at least one advertisement data to be transmitted to the wireless terminal 140 is confirmed (1815), the advertisement server 135 is provided to the wireless terminal 140 in association with the advertisement information D / B (865). At least one advertisement data is extracted (1820), and the extracted at least one advertisement data is transmitted to the wireless terminal 140 through a wireless communication network and processed to be output to the advertisement output region (1825).

According to an embodiment of the present invention, the advertisement server 135 is a communication protocol negotiated with the wireless terminal 140 (for example, the advertisement data communication protocol provided in the one-time authentication program provided in the wireless terminal 140). It is preferable to transmit the extracted advertising data to the wireless terminal 140 through.

According to another exemplary embodiment of the present invention, the advertisement server 135 includes the extracted advertisement data in a wireless web document transmitted by the wireless server 125 to the wireless terminal 140. Is preferred.

If the advertisement data is output to the advertisement output region displayed on the screen of the wireless terminal 140 (1830), the advertisement server 135 provides the advertisement data in association with the advertisement information D / B 865. The amount of advertising revenue corresponding to is checked (1835).

According to the exemplary embodiment of the present invention, the advertisement server 135 checks the advertisement price information corresponding to the advertisement data enhanced by the wireless terminal 140 in connection with the advertisement information D / B 865 and the advertisement. Characterized in that the advertising revenue amount information corresponding to the provision of the advertisement data of the amount is confirmed.

In this case, the advertisement revenue amount information is preferably made of a variety of fees in the advertising amount including the revenue amount, may be used as the advertising revenue amount of the advertising amount according to the intention of those skilled in the art.

In addition, the advertisement server 135 calculates a one-time authentication fee replacement amount to replace (or discount) the one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication process among the confirmed advertisement revenue amount (1840).

According to the method of the present invention, the one-time authentication fee replacement amount is preferably made to include a certain amount of the advertising revenue amount, or comprises an amount corresponding to a certain ratio of the advertising revenue amount.

If the one-time authentication fee replacement amount to replace (or discount) the one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication process is calculated (1845), the advertisement server 135 may use the one-time authentication fee replacement amount. The one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication process is replaced (or discounted) (1850).

According to the exemplary embodiment of the present invention, the advertisement server 135 confirms the deposit information deposited by the advertiser in connection with the advertisement information D / B 865 and replaces the disposable authentication fee replacement amount of the deposit with the disposable amount. It is preferable to substitute the one-time authentication fee amount for the authentication key-based wireless security authentication process (or process the discounted amount from the one-time authentication fee amount).

According to the present invention, when the one-time authentication key-based wireless security authentication processing through the wireless terminal used by the customer is required, one-time authentication that outputs a one-time authentication screen for the one-time authentication key-based wireless security authentication processing in a certain area of the wireless terminal screen After outputting the area, and processing the advertisement output area for outputting the advertising data in the remaining areas other than the one-time authentication area, and processing the one-time authentication key-based wireless security authentication through the one-time authentication area, using a wireless communication network There is an advantage to provide a one-time authentication key-based wireless security authentication function for various financial transactions (or payment) and wireless services.

According to the present invention, the one-time authentication key-based wireless security authentication service is free (or low cost) by replacing (or discounting) a portion of the revenue amount corresponding to the advertisement output through the advertisement output area with the one-time authentication fee. There is an advantage to provide.

Claims (4)

In the one-time authentication key-based wireless security authentication processing using a mobile phone, the one-time authentication area for outputting the one-time authentication screen for processing the one-time authentication key-based wireless security authentication to the predetermined area of the mobile phone screen, and outputs the advertisement data An output processor for processing an output area by dividing the output area from the one-time authentication area; An advertisement receiver configured to receive advertisement data to be output to the advertisement output region through a wireless communication network; An advertisement output unit configured to process the received advertisement data to be output to the advertisement output region divided from the disposable authentication region; And When the one-time authentication key is generated and output through the one-time authentication area divided from the advertisement output area, and the output one-time authentication key is input through the one-time authentication key input screen (or interface) output to the one-time authentication area, And an authentication key processing unit for transmitting the input one-time authentication key to a server on a communication network to process a one-time authentication key-based wireless security authentication. When using a one-time authentication key-based wireless security authentication processing in the mobile phone used by the customer, a one-time authentication screen for outputting the one-time authentication key-based wireless security authentication by transmitting the advertising data to the mobile phone through the wireless communication network from the advertisement providing means Processing the output to an advertisement output area excluding the authentication area; Confirming an advertisement revenue amount corresponding to the output of the advertisement data in the advertisement output area by an amount calculating means, and calculating a one-time authentication fee replacement amount among the advertisement revenue amounts; And And processing the one-time authentication fee amount to be replaced (or discounted) through the calculated one-time authentication fee replacement amount in a fee processing means. A recording medium comprising a program for executing the method of claim 1. When the one-time authentication key-based wireless security authentication processing in the mobile phone used by the customer, the advertisement except the one-time authentication area that outputs the one-time authentication screen for processing the one-time authentication key-based wireless security authentication by transmitting the advertising data to the mobile phone through a wireless communication network Advertisement providing means for processing to be output to the output area; An amount calculation means for checking an advertisement revenue amount corresponding to the output of the advertisement data in the advertisement output area, and calculating a replacement amount of a one-time authentication fee among the advertisement revenue amounts; And And a fee processing means for processing the one-time authentication fee amount to be replaced (or discounted) through the calculated one-time authentication fee replacement amount.
KR1020070101140A 2007-10-08 2007-10-08 System and method for operating advertisement with one-time authentication and mobile phone, recording medium KR20090036044A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020070101140A KR20090036044A (en) 2007-10-08 2007-10-08 System and method for operating advertisement with one-time authentication and mobile phone, recording medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020070101140A KR20090036044A (en) 2007-10-08 2007-10-08 System and method for operating advertisement with one-time authentication and mobile phone, recording medium

Publications (1)

Publication Number Publication Date
KR20090036044A true KR20090036044A (en) 2009-04-13

Family

ID=40761151

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020070101140A KR20090036044A (en) 2007-10-08 2007-10-08 System and method for operating advertisement with one-time authentication and mobile phone, recording medium

Country Status (1)

Country Link
KR (1) KR20090036044A (en)

Similar Documents

Publication Publication Date Title
KR101140223B1 (en) Device for Processing a Payment
KR100963928B1 (en) Method for Authenting Wireless One-time with Financial Password and Mobile Phone, Recording Medium
KR20230107162A (en) Near Field Communication based Payment Method Using Token Code
KR100963924B1 (en) Method for Confirming Wireless One-time Authentication Location and Mobile Phone, Recording Medium
KR20070016893A (en) System and Method for Processing Financial Transaction by Using Mobile Devices, Devices for Processing Financial Transaction, Mobile Devices and Recording Medium
KR101413117B1 (en) System for Processing Financial Transaction by using Token Code
KR100999567B1 (en) Method for Authenticating Wireless One-time with Living Body Information Base Two Factor and Recording Medium
KR100963929B1 (en) Method for Authenticating Wireless One-time with Financial Security Card Base Two Factor and Recording Medium
KR101326100B1 (en) Method for Providing Transaction by using Token Code
KR101139288B1 (en) Method for Processing Wireless Complex Settlement, Sales Man Wireless Terminal
KR20090036046A (en) System and method for providing target advertisement with wireless one-time authentication and mobile phone, recording medium
KR20090036044A (en) System and method for operating advertisement with one-time authentication and mobile phone, recording medium
KR101392360B1 (en) Method for Processing Financial Transaction by using Token Code
KR20090036045A (en) Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium
KR20120102565A (en) Method for certificating payment by using dynamic created code
KR100963927B1 (en) Moblie Phone for Displaying Security with Wireless One-time Authentication and Recording Medium
KR20090094791A (en) Method for Providing Advertisement with Wireless One-time Authentication
KR20090036048A (en) System and method for providing customer ordered advertisement with wireless one-time authentication and recording medium
KR20090094790A (en) Mobile Phone for Providing Advertisement with Wireless One-time Authentication
KR20090036047A (en) System and method for providing advertisement with wireless one-time authentication and recording medium
KR20090036049A (en) System and method for settling wireless one-time authentication advertisement profit and recording medium
KR20090036060A (en) System and method for authenticating locatin base wireless one-time and recording medium
KR20090094792A (en) System for Providing Customer Ordered Advertisement with Wireless One-time Authentication
KR20090098766A (en) Method for authenticating locatin base wireless one-time
KR20090096588A (en) Method for Settling Wireless One-time Authentication Advertisement Profit

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
NORF Unpaid initial registration fee